>> ARCHIVE: 2016-07

Windows 7 SP1 x86 privilege escalation exploit that leverages the issue documented in MS16-014.

This code exploits a 0day privilege escalation vulnerability (or possible backdoor) in the SystemSmmRuntimeRt UEFI driver (GUID is 7C79AC 8C-5E6C-4E3D-BA6F-C260EE7C172E) of Lenovo firmware.

Cuckoo Sandbox Guest versions 2.0.1 and below XMLRPC privilege remote code execution exploit.

WordPress Ultimate Membership Pro plugin version 3.3 suffers from a remote SQL injection vulnerability.

Symantec Endpoint Protection Manager and Client version 12.1 suffers from cross site request forgery, cross site scripting, and open redirection vulnerabilities.