| |
Latest Exploits | www.SecurityPhresh.com | Latest Exploits | |
| Showing 'Latest Exploits' from 1 to 10 | | | Spider Catalog 1.4.6 Cross Site Scripting / Path Disclosure / SQL InjectionSpider Catalog version 1.4.6 is a Wordpress plugin that suffers from multiple cross site scripting, path disclosure, and remote SQL injection vulnerabilities. | Spider Event Calendar 1.3.0 Cross Site Scripting / Path Disclosure / SQL InjectionSpider Event Calendar version 1.3.0 is a Wordpress plugin that suffers from multiple cross site scripting, path disclosure, and remote SQL injection vulnerabilities. | Weyal CMS SQL InjectionWeyal CMS suffers from a remote SQL injection vulnerability. Note that this finding has site-specific information. | AdobeCollabSync Buffer Overflow Adobe Reader X Sandbox BypassThis Metasploit module exploits a vulnerability on Adobe Reader X Sandbox. The vulnerability is due to a sandbox rule allowing a Low Integrity AcroRd32.exe process to write register values which can be used to trigger a buffer overflow on the AdobeCollabSync... | Nginx HTTP Server 1.3.9-1.4.0 Chuncked Encoding Stack Buffer OverflowThis Metasploit module exploits a stack buffer overflow in versions 1.3.9 to 1.4.0 of nginx. The exploit first triggers an integer overflow in the ngx_http_parse_chunked() by supplying an overly long hex value as chunked block size. This value is later... | Wordpress Flagallery-Skins SQL InjectionWordpress Flagallery-skins plugin suffers from an SQL Injection vulnerability. Note that this advisory has site-specific information. | Ophcrack 3.5.0 Local Code Execution BOFTopic: Ophcrack 3.5.0 Local Code Execution BOF Risk: High Text:shellcode = ( #windows/exec EXITFUNC=seh CMD=calc R | msfencode -e x86/alpha_mixed bufferregister=esp -t c "x54x59x49x49... | Linksys WRT160nv2 Apply.cgi Remote Command InjectionTopic: Linksys WRT160nv2 apply.cgi Remote Command Injection Risk: High Text:require msf/core require rex/proto/tftp class Metasploit3 < Msf::Exploit::Remote Rank = ExcellentRanking in... | Kimai 0.9.2.1306-3 SQL InjectionTopic: Kimai 0.9.2.1306-3 SQL Injection Risk: Medium Text:# Exploit Title: Kimai 0.9.2.1306-3 SQLi # Date: 05/20/2013 # Exploit Author: drone (@dronesec) # Vendor Homepage: http://ww... | [dos] - Win32k!EPATHOBJ::pprFlattenRec Uninitialized Next Pointer Testcasewin32k!EPATHOBJ::pprFlattenRec Uninitialized Next Pointer Testcase | | | 1 2 3 4 5 6 7 8 9 10 Older » | |
|
|
