PayPal Inc BB #127 – 2FA Bypass Vulnerability
Posted by deepcore under exploit (No Respond)
No abstract description available in the upcomings!
Archive for August, 2016
[webapps] Claroline < 1.7.7 – Arbitrary File Inclusion
Posted by deepcore under Security (No Respond)
[remote] – Samsung Smart Home Camera SNH-P-6410 – Command Injection
Posted by deepcore under Security (No Respond)
MSIE Read AV In MSHTML!CMultiReadStreamLifetimeManager::ReleaseThreadStateInternal
Posted by deepcore under exploit (No Respond)
Microsoft Internet Explorer read AV in MSHTML!CMultiReadStreamLifetimeManager::ReleaseThreadStateInternal proof of concept exploit.
Microsoft Office Word 2007 / 2010 / 2013 / 2016 Remote Code Execution
Posted by deepcore under exploit (No Respond)
Microsoft Office Word versions 2007, 2010, 2013, and 2016 suffer from an out-of-bounds read that allows for remote code execution. This vulnerability is noted in MS16-099.
Teamspeak 3 Use-After-Free / Information Disclosure / DoS
Posted by deepcore under exploit (No Respond)
Teamspeak 3 suffers from multiple vulnerabilities including denial of service, a race condition that leads to a use-after-free, and various other issues.
Joomla Registration Pro 3.2.12 SQL Injection
Posted by deepcore under exploit (No Respond)
Joomla Registration Pro component versions 3.2.10 through 3.2.12 suffer from a remote SQL injection vulnerability.
Microsoft Education Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Microsoft’s Education site suffered from a cross site scripting vulnerability.
QuickerBB 0.7.0 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
QuickerBB version 0.7.0 suffers from a cross site scripting vulnerability.
ColoradoFTP 1.3 Prime Edition (Build 8) Directory Traversal
Posted by deepcore under exploit (No Respond)
ColoradoFTP version 1.3 Prime Edition (Build 8) suffers from a directory traversal vulnerability.