Microsoft Visual Studio 2010 DLL Hijacking
Posted by deepcore under exploit (No Respond)
Microsoft Visual Studio 2010 suffers from a dll hijacking vulnerability.
Archive for October, 2016
WordPress Userpro Remote File Upload
Posted by deepcore under exploit (No Respond)
This Metasploit module exploits an arbitrary PHP code upload in thewordpress Ifileupload plugin, The vulnerability allows for unauthorization file upload and remote code execution.
Telegram Web 0.5.5 Username Bypass
Posted by deepcore under exploit (No Respond)
Telegram Web version 0.5.5 allows you to set a null username due to a client-side mitigation for null bytes.
Event Calendar PHP 1.5 SQL Injection
Posted by deepcore under exploit (No Respond)
Event Calendar PHP version 1.5 suffers from a remote SQL injection vulnerability.
Event Calendar PHP 1.5 Cross Site Request Forgery
Posted by deepcore under exploit (No Respond)
Event Calendar PHP version 1.5 suffers from a cross site request forgery vulnerability.
Just Dial Clone Script SQL Injection
Posted by deepcore under exploit (No Respond)
Just Dial Clone Script suffers from a remote SQL injection vulnerability.
Classifieds Rental Script SQL Injection
Posted by deepcore under exploit (No Respond)
Classifieds Rental Script suffers from a remote SQL injection vulnerability.
MiCasa VeraLite Remote Code Execution
Posted by deepcore under exploit (No Respond)
MiCasa VeraLite suffers from a remote code execution vulnerability.
DirtyCow Linux Kernel Race Condition
Posted by deepcore under exploit (No Respond)
This exploit demonstrates a race condition in the Linux kernel’s memory subsystem and how it handles the copy-on-write (COW) breakage of private read-only memory mappings.
DirtyCow Local Root Proof Of Concept
Posted by deepcore under exploit (No Respond)
DirtyCow local root proof of concept exploit that overwrites passwd.