[webapps] – CubeCart 5.2.8 – Session Fixation
Posted by deepcore under Security (No Respond)
Archive for April, 2014
[webapps] – Microweber CMS 0.93 – CSRF Vulnerability
Posted by deepcore under Security (No Respond)
Apple Mac OS X Lion Kernel xnu Privilege Escalation
Posted by deepcore under Apple (No Respond)
Apple Mac OS X Lion kernel xnu versions 1699.32.7 except 1699.24.8 NFS mount privilege escalation exploit. This exploit leverage a stack overflow vulnerability to escalate privileges. The vulnerable function nfs_convert_old_nfs_args does not verify the size of a user-provided argument before copying it to the stack. As a result by passing a large size, a local […]
Tags: Apple, ios, osx[local exploits] – Apple Mac OS X Lion Kernel <= xnu-1699.32.7 except xnu-1699.24.8 NFS Mount – Privilege Escalation
Posted by deepcore under exploit (No Respond)
[web applications] – Sendy 1.1.9.1 – SQL Injection Vulnerability
Posted by deepcore under exploit (No Respond)
Zed Attack Proxy 2.3.0 Mac OS X Release
Posted by deepcore under Apple (No Respond)
The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications. It is designed to be used by people with a wide range of security experience and as such is ideal for developers and functional testers who are new to penetration testing. ZAP provides automated scanners […]
Tags: Apple, ios, osxBlueMe Bluetooth 5.0 Code Execution
Posted by deepcore under Apple (No Respond)
AppFish Offline Coder 2.2 Persistent Script Insertion
Posted by deepcore under Apple (No Respond)
iVault Private P&V 1.1 Directory Traversal
Posted by deepcore under Apple (No Respond)
[remote exploits] – Sophos Web Protection Appliance Command Execution Exploit
Posted by deepcore under exploit (No Respond)