Subscribe via feed.
Archive for December, 2015

Microsoft Windows win32k Local Privilege Escalation

Posted by deepcore under exploit (No Respond)

Microsoft Windows win32k local privilege escalation exploit that leverages the vulnerability detailed in MS15-010.

DELL Scrutinizer 12.0.3 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

DELL Scrutinizer version 12.0.3 suffers from a persistent script insertion vulnerability.

Western Union Cross Site Scripting

Posted by deepcore under exploit (No Respond)

The Vulnerability Laboratory Core Research Team discovered a client side cross site scripting web vulnerability in the official Western Union China web application.

WordPress Content Text Slider On Post 6.8 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

WordPress Content Text Slider on Post plugin version 6.8 suffers from a cross site scripting vulnerability.

Symfony PHP Framework Session Fixation

Posted by deepcore under exploit (No Respond)

Symfony PHP Framework versions 2.3.0 to 2.3.34, 2.6.0 to 2.6.11, and 2.7.0 to 2.7.6 suffers from a session fixation vulnerability.

Wireshark AirPDcapDecryptWPABroadcastKey Out-Of-Bounds Read

Posted by deepcore under exploit (No Respond)

A crash can occur in Wireshark due to a heap-based out-of-bounds read in AirPDcapDecryptWPABroadcastKey.

Wireshark Infer_pkt_encap Out-Of-Bounds Read

Posted by deepcore under exploit (No Respond)

A crash can occur in Wireshark due to a heap-based out-of-bounds read in Infer_pkt_encap.

[dos] – PHP 7.0.0 – Format String Vulnerability

Posted by deepcore under Security (No Respond)

PHP 7.0.0 – Format String Vulnerability

Tags: ,

[webapps] – Bigware Shop 2.3.01 – Multiple Local File Inclusion Vulnerabilities

Posted by deepcore under Security (No Respond)

Bigware Shop 2.3.01 – Multiple Local File Inclusion Vulnerabilities

Tags: ,

[webapps] – Arastta 1.1.5 – SQL Injection Vulnerabilities

Posted by deepcore under Security (No Respond)

Arastta 1.1.5 – SQL Injection Vulnerabilities

Tags: ,