| Latest Exploits |
|
| Showing 'Latest Exploits' from 1 to 10 |
| |
Nagios XI Magpie_debug.php Root Remote Code ExecutionThis Metasploit module exploits two vulnerabilities in Nagios XI 5.5.6. One allows for unauthenticated remote code execution and another allows for local privilege escalation. When combined, these two vulnerabilities give us a root reverse... |
BlogEngine.NET 3.3.6 / 3.3.7 Path Directory TraversalBlogEngine.NET versions 3.3.6 and 3.3.7 suffer from a path directory traversal vulnerability. |
Fortinet FCM-MB40 Cross Site Request Forgery / Remote Command ExecutionFortinet FCM-MB40 suffers from remote command execution and cross site request forgery vulnerabilities. |
WordPress Live Chat Unlimited 2.8.3 Cross Site ScriptingWordPress Live Chat Unlimited plugin version 2.8.3 suffers from a persistent cross site scripting vulnerability. |
WordPress ILive 1.0.4 Cross Site ScriptingWordPress iLive plugin version 1.0.4 suffers from a cross site scripting vulnerability. |
SAPIDO RB-1732 Remote Command ExecutionSAPIDO RB-1732 version 2.0.43 suffers from a remote command execution vulnerability. |
SuperDoctor5 NRPE Remote Code ExecutionSuperDoctor5 implemented a remote command execution plugin in their implementation of NRPE that can be leveraged without authentication. |
Spidermonkey IonMonkey Incorrect PredictionSpidermonkey IonMonkey incorrectly predicts return type of Array.prototype.pop, leading to type confusion vulnerabilities. |
Microsoft Windows Font Cache Service Insecure SectionsThe Windows Font Cache Service exposes section objects insecurely to low privileged users resulting in elevation of privilege. |
Microsoft Windows CmpAddRemoveContainerToCLFSLog Arbitrary File / Directory CreationMicrosoft Windows suffers from a CmpAddRemoveContainerToCLFSLog arbitrary file and directory creation vulnerability that allows for elevation of privilege. |
|
| 1 2 3 4 5 6 7 8 9 10 Older » |
|
