getpidcon() usage in hardware binder servicemanager on Android permits ACL bypass.
>> ARCHIVE: 2019-03
It was discovered that virtual address 0 is mappable via privileged write() to /proc/*/mem on Linux.
This Metasploit module exploits a PHP unserialize() vulnerability in Drupal RESTful Web Services by sending a crafted request to the /node REST endpoint. As per SA-CORE-2019-003, the initial remediation was…
This Metasploit module exploits a command injection vulnerability in Imperva SecureSphere version 13.x. The vulnerability exists in the PWS service, where Python CGIs did not properly sanitize user supplied command…
ClearOS 7 Community Edition suffers from a cross site scripting vulnerability.
This Metasploit module uses the su binary present on rooted devices to run a payload as root. A rooted Android device will contain a su binary (often linked with an…
This Metasploit module exploits a vulnerability in the FreeBSD kernel, when running on 64-bit Intel processors. By design, 64-bit processors following the X86-64 specification will trigger a general protection fault…
http://e-lib.ddc.moph.go.th/security/lang.tmp notified by M4L1KL8590X
Drupal < 8.5.11 / < 8.6.10 – RESTful Web Services unserialize() Remote Command Execution (Metasploit)
FreeBSD – Intel SYSRET Privilege Escalation (Metasploit)