This Metasploit module exploits a stack based buffer overflow in HTML5 Video Player 1.2.5.
xorg-x11-server modulepath Local Privilege Escalation
xorg-x11-server versions prior to 1.20.3 modulepath local privilege escalation exploit.
WordPress wawp_framework 1.0 Database Backup Disclosure
WordPress wawp_framework plugin version 1.0 suffers from a database backup disclosure vulnerability.
WordPress pm_market 1.0 Database Backup Disclosure
WordPress pm_market plugin version 1.0 suffers from a database backup disclosure vulnerability.
WordPress WP Complete Backup 3.0.5 Database Backup Disclosure
WordPress WP Complete Backup plugin version 3.0.5 suffers from a database backup disclosure vulnerability.
WordPress Jazzy Forms 1.1.1 Database Backup Disclosure
WordPress Jazzy Forms plugin version 1.1.1 suffers from a database backup disclosure vulnerability.
WordPress Events Calendar Premium 1.0 Database Disclosure
WordPress Events Calendar Premium plugin version 1.0 suffers from a database disclosure vulnerability.
knc (Kerberized NetCat) Denial Of Service
knc (Kerberised NetCat) versions before 1.11-1 are vulnerable to denial of service (memory exhaustion) that can be exploited remotely without authentication, possibly affecting another service running on the targeted host. Proof of concept included.
Moxa NPort W2x50A 2.1 OS Command Injection
Moxa NPort W2x50A products with firmware version 2.1 Build_17112017 or lower are vulnerable to several authenticated OS command injection vulnerabilities.
WebKit JSC JIT JSPropertyNameEnumerator Type Confusion
When a for-in loop is executed, a JSPropertyNameEnumerator object is created at the beginning and used to store the information of the input object to the for-in loop. Inside the loop, the structure ID of the “this” object of every get_by_id expression taking the loop variable as the index is compared to the cached structure […]