Home | Latest News | Popular News | Our Network | About | Contact
Latest Exploits | www.SecurityPhresh.com
Latest Exploits
Showing 'Latest Exploits' from 1 to 10
Sony Smart TV Information Disclosure / File Read
23rd Apr 2019 [10 hours ago] from PacketStormSecurity
Sony Smart TVs suffer from information disclosure and arbitrary file read vulnerabilities.
Linux Siemens R3964 Line Discipline Missing Lock
23rd Apr 2019 [10 hours ago] from PacketStormSecurity
The Siemens R3964 line discipline code in drivers/tty/n_r3964.c has a few races around its ioctl handler; for example, the handler for R3964_ENABLE_SIGNALS just allocates and deletes elements in a linked list with zero locking. This code...
74CMS 5.0.1 Cross Site Request Forgery
23rd Apr 2019 [10 hours ago] from PacketStormSecurity
74CMS version 5.0.1 suffers from a cross site request forgery vulnerability.
Linux Overflow Via FUSE
23rd Apr 2019 [10 hours ago] from PacketStormSecurity
Linux suffers from a page->_refcount overflow via FUSE with ~140GiB RAM usage.
ManageEngine Applications Manager 14.0 SQL Injection / Command Injection
23rd Apr 2019 [10 hours ago] from PacketStormSecurity
This Metasploit module exploits SQL injection and command injection vulnerability in the ManageEngine AM versions 14 and below.
AdminExpress 1.2.5 Folder Path Denial Of Service (PoC)
23rd Apr 2019 [16 hours ago] from ExploitDatabase
Topic: AdminExpress 1.2.5 Folder Path Denial of Service (PoC) Risk: Low Text:# -*- coding: utf-8 -*- #!/usr/bin/python # Exploit Title: AdminExpress 1.2.5 - Denial of Service (PoC) # Date: 2019-04-12...
Ross Video DashBoard 8.5.1 Insecure Permissions
23rd Apr 2019 [18 hours ago] from PacketStormSecurity
Ross Video DashBoard version 8.5.1 suffers from an elevation of privileges vulnerability which can be used by a simple authenticated user that can change the executable file with a binary of choice. The vulnerability exist due to the improper...
ManageEngine Applications Manager 14.0 Authentication Bypass / Remote Command Execution (Metasploit)
23rd Apr 2019 [24 hours ago] from ExploitDatabase
Topic: ManageEngine Applications Manager 14.0 Authentication Bypass / Remote Command Execution (Metasploit) Risk: High Text:## # This module requires Metasploit: http://metasploit.com/download # Current source:...
WordPress Contact Form Builder 1.0.67 CSRF / LFI
22nd Apr 2019 [44 hours ago] from PacketStormSecurity
WordPress Contact Form Builder plugin version 1.0.67 suffers from cross site request forgery and local file inclusion vulnerabilities.
Google Chrome 73.0.3683.103 V8 JavaScript Engine Denial Of Service
22nd Apr 2019 [44 hours ago] from PacketStormSecurity
Google Chrome version 73.0.3683.103 V8 JavaScript Engine out-of-memory in invalid table size denial of service proof of concept exploit.
1 2 3 4 5 6 7 8 9 10 Older »