Subscribe via feed.
Archive for March, 2019

vBulletin 4.2.5 Thread Post Bookmarking 1.2.0 Open Redirection

Posted by deepcore under exploit (No Respond)

vBulletin version 4.2.5 with Thread Post Bookmarking version 1.2.0 suffers from an open redirection vulnerability.

Java Debug Wire Protocol Remote Code Execution

Posted by deepcore under exploit (No Respond)

Java Debug Wire Protocol (JDWP) remote code execution exploit.

vBulletin 4.2.5 vBSuper_PM 1.2.3 Lite Open Redirection

Posted by deepcore under exploit (No Respond)

vBulletin version 4.2.5 with vBSuper_PM version 1.2.3 Lite suffers from an open redirection vulnerability.

OpenDocMan 1.3.4 SQL Injection

Posted by deepcore under exploit (No Respond)

OpenDocMan version 1.3.4 suffers from a remote SQL injection vulnerability in search.php.

vBulletin 4.2.5 Member Map 1.1.2 Open Redirection

Posted by deepcore under exploit (No Respond)

vBulletin version 4.2.5 with Member Map version 1.1.2 suffers from an open redirection vulnerability.

WordPress WP-Image-News-Slider 3.3 Cross Site Request Forgery / Shell Upload

Posted by deepcore under exploit (No Respond)

WordPress WP-Image-News-Slider plugin version 3.3 suffers from cross site request forgery and remote shell upload vulnerabilities.

Babel 0.4.1 Open Redirection

Posted by deepcore under exploit (No Respond)

Babel versions 0.4.1 and below suffer from an open redirection vulnerability.

Sagemcom Router Insufficient Default PSK Entropy

Posted by deepcore under exploit (No Respond)

Sagemcom F@st 5260 routers on firmware version 0.4.39 (and possibly others), in WPA mode, default to using a PSK that is generated from a 2-part wordlist of known values and a nonce with insufficient entropy. The number of possible PSKs is about 1.78 billion, which is too small.

RealTerm Serial Terminal 2.0.0.70 Echo Port Buffer Overflow

Posted by deepcore under exploit (No Respond)

RealTerm Serial Terminal version 2.0.0.70 suffers from an echo port buffer overflow vulnerability. Modifications to the original proof of concept include the fact that it uses a larger payload size for shellcode due to different jump offsets and filters the bad character 0x3a as this is the character for port which causes an error “:”.

Android Binder Use-After-Free

Posted by deepcore under exploit (No Respond)

Android suffer from a binder use-after-free via a racy initialization of ->allow_user_free.