This Metasploit module exploits a vulnerability in the handling of Windows Shortcut files (.LNK) that contain a dynamic icon, loaded from a malicious DLL. This vulnerability is a variant of…
>> ARCHIVE: 2017-11
This Metasploit module exploits a vulnerability found in Mako Server version 2.5. It’s possible to inject arbitrary OS commands in the Mako Server tutorial page through a PUT request to…
This Metasploit module exploits a stack Buffer Overflow in the GCore server (GCoreServer.exe). The vulnerable webserver is running on Port 13003 and Port 13004, does not require authentication and affects…
http://rajanukul.go.th notified by ExaTR
Zoho ManageEngine Applications Manager version 13 suffers from multiple post-authentication remote SQL injection vulnerabilities.
Dialog Mobile Broadband version 23.015.11.01.297 suffers from a dll hijacking vulnerability.
web2Project version 3.3 suffers from a cross site scripting vulnerability.
CoolPlayer+ Portable version 2.19.6 stack overflow exploit with ASLR bypass and a bind shell.
FreeFloat FTP Server version 1.0 HOST buffer overflow exploit with ASLR bypass.
The Debut embedded http server contains a remotely exploitable denial of service where a single malformed HTTP POST request can cause the server to hang until eventually replying with an…