This blog is mainly about security but I will add a drone section. The first post is related to my painful and regretful purchased of a Xiro Xplorer V few months ago. Everything went fine at the beginning but not for long…
Read More >>
This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.
This blog is mainly about security but I will add a drone section. The first post is related to my painful and regretful purchased of a Xiro Xplorer V few months ago. Everything went fine at the beginning but not for long…
Read More >>
Monstra cms 3.0.4 – Persitent Cross-Site Scripting
Apache CouchDB 1.7.0 and 2.x before 2.1.1 – Remote Privilege Escalation
phpMyAdmin 4.8.0 < 4.8.0-1 – Cross-Site Request Forgery
Ncomputing vSpace Pro v10 and v11 – Directory Traversal PoC
Cobub Razor version 0.8.0 suffers from a path disclosure vulnerability.
Microsoft Internet Explorer version 11.371.16299.0 suffers from a denial of service vulnerability.
DrayTek Vigor ACS server, a remote enterprise management system for DrayTek routers, uses a vulnerable version of the Adobe / Apache Flex Java library that has a deserialisation vulnerability. This can be exploited by an unauthenticated attacker to achieve remote code execution as root / SYSTEM on all versions until 2.2.2. Exploit code included.
Chrome V8 JIT suffers from a NodeProperties::InferReceiverMaps type confusion vulnerability.
Drupal Avatar Uploader module version 7.x-1.0-beta8 suffers from an arbitrary file download vulnerability.