This Metasploit module attempts to gain root privileges on Fedora systems with a vulnerable version of Automatic Bug Reporting Tool (ABRT) configured as the crash handler. A race condition allows local users to change ownership of arbitrary files (CVE-2015-3315). This Metasploit module uses a symlink attack on ‘/var/tmp/abrt/*/maps’ to change the ownership of /etc/passwd, then […]
Joomla! Component JomEstate PRO 3.7 – ‘id’ SQL Injection
Tags:
0day,
remote exploit
Joomla! Component Staff Master 1.0 RC 1 – SQL Injection
Tags:
0day,
remote exploit
Joomla! Component JS Autoz 1.0.9 – SQL Injection
Tags:
0day,
remote exploit
Joomla! Component Timetable Responsive Schedule For Joomla 1.5 – ‘alias’ SQL Injection
Tags:
0day,
remote exploit
Joomla! Component JTicketing 2.0.16 – SQL Injection
Tags:
0day,
remote exploit
Joomla! Pinterest Clone Social Pinboard 2.0 – SQL Injection
Tags:
0day,
remote exploit
Joomla! Component NeoRecruit 4.1 – SQL Injection
Tags:
0day,
remote exploit
Joomla Component ccNewsletter 2.x.x ‘id’ – SQL Injection
Tags:
0day,
remote exploit
Joomla! Component Realpin 1.5.04 – SQL Injection
Tags:
0day,
remote exploit