2018 December

Responsive FileManager 9.13.4 XSS / File Manipulation / Traversal

Posted by deepcore under exploit (No Respond)

Responsive FileManager version 9.13.4 suffers from bypass, cross site scripting, remote file read, remote file write, and traversal vulnerabilities.

Zortam MP3 Media Studio 24.15 Local Buffer Overflow

Posted by deepcore under exploit (No Respond)

Zortam MP3 Media Studio version 24.15 SEH local buffer overflow exploit.

Fortify SSC 17.10 / 17.20 / 18.10 Project Insecure Direct Object Reference

Posted by deepcore under exploit (No Respond)

Fortify Software Security Center versions 17.10, 17.20, and 18.10 suffer from an insecure direct object reference vulnerability related to user projects.

Fortify SSC 17.10 / 17.20 / 18.10 User Detail Insecure Direct Object Reference

Posted by deepcore under exploit (No Respond)

Fortify Software Security Center versions 17.10, 17.20, and 18.10 suffer from an insecure direct object reference vulnerability related to extracting local and ldap users.

WebDAV Server Serving DLL

Posted by deepcore under exploit (No Respond)

This Metasploit module simplifies the rundll32.exe Application Whitelisting Bypass technique. The module creates a webdav server that hosts a dll file. When the user types the provided rundll32 command on a system, rundll32 will load the dll remotely and execute the provided export function. The export function needs to be valid, but the default meterpreter […]

Windows UAC Protection Bypass

Posted by deepcore under exploit (No Respond)

This Metasploit module modifies a registry key, but cleans up the key once the payload has been invoked. The module does not require the architecture of the payload to match the OS.

[webapps] Double Your Bitcoin Script Automatic – Authentication Bypass

Posted by deepcore under Security (No Respond)

Double Your Bitcoin Script Automatic – Authentication Bypass

Tags: 0day, remote exploit

[webapps] Double Your Bitcoin Script Automatic – Authentication Bypass

Posted by deepcore under Security (No Respond)

Double Your Bitcoin Script Automatic – Authentication Bypass

Tags: 0day, remote exploit

[webapps] Fortify Software Security Center (SSC) 17.10/17.20/18.10 – Information Disclosure (2)

Posted by deepcore under Security (No Respond)

Fortify Software Security Center (SSC) 17.10/17.20/18.10 – Information Disclosure (2)

Tags: 0day, remote exploit

[webapps] Fortify Software Security Center (SSC) 17.10/17.20/18.10 – Information Disclosure

Posted by deepcore under Security (No Respond)

Fortify Software Security Center (SSC) 17.10/17.20/18.10 – Information Disclosure

Tags: 0day, remote exploit

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Responsive FileManager 9.13.4 XSS / File Manipulation / Traversal

Zortam MP3 Media Studio 24.15 Local Buffer Overflow

Fortify SSC 17.10 / 17.20 / 18.10 Project Insecure Direct Object Reference

Fortify SSC 17.10 / 17.20 / 18.10 User Detail Insecure Direct Object Reference

WebDAV Server Serving DLL

Windows UAC Protection Bypass

[webapps] Double Your Bitcoin Script Automatic – Authentication Bypass

[webapps] Double Your Bitcoin Script Automatic – Authentication Bypass

[webapps] Fortify Software Security Center (SSC) 17.10/17.20/18.10 – Information Disclosure (2)

[webapps] Fortify Software Security Center (SSC) 17.10/17.20/18.10 – Information Disclosure

Tabs Switcher

BLOGROLL

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Tabs Switcher

BLOGROLL