Linux/x86 /usr/bin/head -n99 cat etc/passwd Shellcode
61 bytes small Linux/x86 /usr/bin/head -n99 cat etc/passwd shellcode.
View ArticleLinux/x64 Reverse (0.0.0.0:1907/TCP) Shell Shellcode
119 bytes small Linux/x64 reverse (0.0.0.0:1907/TCP) shell shellcode.
View ArticleMicrosoft Lync For Mac 2011 Injection
Microsoft Lync for Mac 2011 suffers from a forced browsing / download injection vulnerability.
View ArticleGoogle Allo Denial Of Service
Google Allo suffers from a denial of service vulnerability.
View ArticleRockwell Automation Allen-Bradley PowerMonitor 1000 Authentication Bypass
Rockwell Automation Allen-Bradley PowerMonitor 1000 suffers from an incorrect access control that can allow for authentication bypass.
View ArticleSeopanel 3.13.0 Cross Site Scripting
Seopanel version 3.13.0 suffers from multiple cross site scripting vulnerabilities.
View ArticleXorg X11 Server (AIX) Local Privilege Escalation
Xorg X11 server on AIX local privilege escalation exploit.
View ArticleSolarWinds SFTP Insecure Password Storage / XXE Injection
In SolarWinds SFTP/SCP Server through 2018-09-10, the configuration file is world readable and writable, and stores user passwords in an insecure manner, allowing an attacker to determine passwords for...
View ArticleOpenSSH User Enumeration
OpenSSH versions prior to 7.7 suffer from a user enumeration vulnerability.
View ArticleDomainMOD 4.11.01 Cross Site Scripting
DomainMOD version 4.11.01 suffers from multiple cross site scripting vulnerabilities.
View ArticleDolibarr ERP / CRM 8.0.3 Cross Site Scripting
Dolibarr ERP / CRM version 8.0.3 suffers from a cross site scripting vulnerability.
View ArticleNUUO NVRMini2 3.9.1 Command Injection
NUUO NVRMini2 version 3.9.1 suffers from an authenticated command injection vulnerability.
View ArticleWireshark find_signature Heap Out-Of-Bounds Read
Wireshark suffers from a heap out-of-bounds read in find_signature.
View ArticleChrome V8 Math.expm1 Incorrect Type Information
Chrome V8 sets incorrect type information on Math.expm1.
View ArticleTypesetter 5.1 Cross Site Scripting
Typesetter version 5.1 suffers from a cross site scripting vulnerability.
View ArticleSlackware Security Advisory - mozilla-nss Updates
Slackware Security Advisory - New mozilla-nss packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix a security issue.
View Article