[webapps] – Beckhoff CX9020 CPU Module – Remote Code Execution Exploit
Posted by deepcore under Security (No Respond)
Archive for October, 2015
Zpanel 10.1.0 Remote Unauthenticated Code Execution
Posted by deepcore under exploit (No Respond)
This Metasploit module exploits an information disclosure vulnerability found in Zpanel versions 10.1.0 and below. The vulnerability is due to a vulnerable version of pChart allowing remote, unauthenticated, users to read arbitrary files found on the filesystem. This particular module utilizes this vulnerability to identify the username/password combination of the MySQL instance. With the credentials […]
The First Rule Of Zero-Days Is No One Talks About Zero-Days
Posted by deepcore under exploit (No Respond)
[local] – HandyPassword 4.9.3 – SEH Over-Write Exploit
Posted by deepcore under Security (No Respond)
[remote] – Zpanel Remote Unauthenticated RCE
Posted by deepcore under Security (No Respond)
VLC 2.2.1 Stack Overflow
Posted by deepcore under exploit (No Respond)
VLC version 2.2.1 libvlccore .mp3 stack overflow memory exhaustion exploit.
Belkin Router N150 Path Traversal
Posted by deepcore under exploit (No Respond)
Belkin Router N150 suffers from a path traversal vulnerability.
RealtyScript 4.0.2 Cross Site Request Forgery / Cross Site Scripting
Posted by deepcore under exploit (No Respond)
RealtyScript version 4.0.2 suffers from cross site request forgery and cross site scripting vulnerabilities.
RealtyScript 4.0.2 SQL Injection
Posted by deepcore under exploit (No Respond)
RealtyScript version 4.0.2 suffers from multiple time-based remote SQL injection vulnerabilities.
Free WMA MP3 Converter – Buffer Overflow Exploit (SEH)
Posted by deepcore under exploit (No Respond)
An independent vulnerability laboratory researcher discovered a buffer overflow vulnerability in the official Free WMA MP3 Converter v1.8 software.