| Latest Exploits |
| Showing 'Latest Exploits' from 1 to 10|
| |Sony Smart TV Information Disclosure / File Read Sony Smart TVs suffer from information disclosure and arbitrary file read vulnerabilities.
| |Linux Siemens R3964 Line Discipline Missing Lock The Siemens R3964 line discipline code in drivers/tty/n_r3964.c has a few races around its ioctl handler; for example, the handler for R3964_ENABLE_SIGNALS just allocates and deletes elements in a linked list with zero locking. This code...
| |74CMS 5.0.1 Cross Site Request Forgery 74CMS version 5.0.1 suffers from a cross site request forgery vulnerability.
| |Linux Overflow Via FUSE Linux suffers from a page->_refcount overflow via FUSE with ~140GiB RAM usage.
| |ManageEngine Applications Manager 14.0 SQL Injection / Command Injection This Metasploit module exploits SQL injection and command injection vulnerability in the ManageEngine AM versions 14 and below.
| |AdminExpress 1.2.5 Folder Path Denial Of Service (PoC) Topic: AdminExpress 1.2.5 Folder Path Denial of Service (PoC) Risk: Low Text:# -*- coding: utf-8 -*- #!/usr/bin/python # Exploit Title: AdminExpress 1.2.5 - Denial of Service (PoC) # Date: 2019-04-12...
| |Ross Video DashBoard 8.5.1 Insecure Permissions Ross Video DashBoard version 8.5.1 suffers from an elevation of privileges vulnerability which can be used by a simple authenticated user that can change the executable file with a binary of choice. The vulnerability exist due to the improper...
| |ManageEngine Applications Manager 14.0 Authentication Bypass / Remote Command Execution (Metasploit) Topic: ManageEngine Applications Manager 14.0 Authentication Bypass / Remote Command Execution (Metasploit) Risk: High Text:## # This module requires Metasploit: http://metasploit.com/download # Current source:...
| |WordPress Contact Form Builder 1.0.67 CSRF / LFI WordPress Contact Form Builder plugin version 1.0.67 suffers from cross site request forgery and local file inclusion vulnerabilities.
| 1 2 3 4 5 6 7 8 9 10 Older » |