Home | Latest News | Popular News | Our Network | About | Contact
Latest Exploits | www.SecurityPhresh.com
Latest Exploits
Showing 'Latest Exploits' from 1 to 10
Nagios XI Magpie_debug.php Root Remote Code Execution
25th Jun 2019 [21 hours ago] from PacketStormSecurity
This Metasploit module exploits two vulnerabilities in Nagios XI 5.5.6. One allows for unauthenticated remote code execution and another allows for local privilege escalation. When combined, these two vulnerabilities give us a root reverse...
BlogEngine.NET 3.3.6 / 3.3.7 Path Directory Traversal
25th Jun 2019 [21 hours ago] from PacketStormSecurity
BlogEngine.NET versions 3.3.6 and 3.3.7 suffer from a path directory traversal vulnerability.
Fortinet FCM-MB40 Cross Site Request Forgery / Remote Command Execution
25th Jun 2019 [21 hours ago] from PacketStormSecurity
Fortinet FCM-MB40 suffers from remote command execution and cross site request forgery vulnerabilities.
WordPress Live Chat Unlimited 2.8.3 Cross Site Scripting
25th Jun 2019 [21 hours ago] from PacketStormSecurity
WordPress Live Chat Unlimited plugin version 2.8.3 suffers from a persistent cross site scripting vulnerability.
WordPress ILive 1.0.4 Cross Site Scripting
25th Jun 2019 [21 hours ago] from PacketStormSecurity
WordPress iLive plugin version 1.0.4 suffers from a cross site scripting vulnerability.
SAPIDO RB-1732 Remote Command Execution
25th Jun 2019 [21 hours ago] from PacketStormSecurity
SAPIDO RB-1732 version 2.0.43 suffers from a remote command execution vulnerability.
SuperDoctor5 NRPE Remote Code Execution
25th Jun 2019 [21 hours ago] from PacketStormSecurity
SuperDoctor5 implemented a remote command execution plugin in their implementation of NRPE that can be leveraged without authentication.
Spidermonkey IonMonkey Incorrect Prediction
25th Jun 2019 [21 hours ago] from PacketStormSecurity
Spidermonkey IonMonkey incorrectly predicts return type of Array.prototype.pop, leading to type confusion vulnerabilities.
Microsoft Windows Font Cache Service Insecure Sections
24th Jun 2019 [45 hours ago] from PacketStormSecurity
The Windows Font Cache Service exposes section objects insecurely to low privileged users resulting in elevation of privilege.
Microsoft Windows CmpAddRemoveContainerToCLFSLog Arbitrary File / Directory Creation
24th Jun 2019 [45 hours ago] from PacketStormSecurity
Microsoft Windows suffers from a CmpAddRemoveContainerToCLFSLog arbitrary file and directory creation vulnerability that allows for elevation of privilege.
1 2 3 4 5 6 7 8 9 10 Older »