Exam Board 3.0.0 Blind SQL Injection
Posted by deepcore under exploit (No Respond)
Exam Board version 3.0.0 suffers from a remote blind SQL injection vulnerability.
Archive for December, 2015
[dos] – Base64 Decoder 1.1.2 – SEH OverWrite PoC
Posted by deepcore under Security (No Respond)
[webapps] – Ovidentia online Module 2.8 – GLOBALS[babAddonPhpPath] Remote File Inclusion
Posted by deepcore under Security (No Respond)
Ovidentia online Module 2.8 – GLOBALS[babAddonPhpPath] Remote File Inclusion
Tags: 0day, remote exploit[dos] – Apache 2.4.17 – Denial of Service
Posted by deepcore under Security (No Respond)
Pinger Remote Code Execution
Posted by deepcore under exploit (No Respond)
Pinger suffers from a remote code execution vulnerability.
PFSense 2.2.5 Directory Traversal
Posted by deepcore under exploit (No Respond)
PFSense versions 2.2.5 and below suffer from a directory traversal vulnerability.
Easy File Sharing FTP Server 3.6 Stack Buffer Overflow
Posted by deepcore under exploit (No Respond)
Easy File Sharing FTP server version 3.6 suffers from a stack buffer overflow vulnerability.
Avira Registry Cleaner DLL Hijacking
Posted by deepcore under exploit (No Respond)
Avira Registry Cleaner suffers from a local DLL hijacking vulnerability.
Adobe Flash Sound.setTransform Use-After-Free
Posted by deepcore under exploit (No Respond)
There is a use-after-free vulnerability in Sound.setTransform. If a transform value is set to an object with valueOf defined, it can free the transform before the values are set.
Seagate GoFlex Satellite Remote Telnet Default Password
Posted by deepcore under exploit (No Respond)
Seagate GoFlex Satellite Mobile Wireless Storage devices contain a hardcoded backdoor account. An attacker could use this account to remotely tamper with the underlying operating system when Telnet is enabled.