[local] ProShow 9.0.3797 – Local Privilege Escalation
Posted by deepcore under Security (No Respond)
Archive for June, 2019
[shellcode] Linux/x86_64 – Bind (4444/TCP) Shell (/bin/sh) Shellcode (104 bytes)
Posted by deepcore under Security (No Respond)
[webapps] UliCMS 2019.1 'Spitting Lama' – Persistent Cross-Site Scripting
Posted by deepcore under Security (No Respond)
[local] Ubuntu 18.04 – 'lxd' Privilege Escalation
Posted by deepcore under Security (No Respond)
Microsoft Windows AppX Deployment Service Local Privilege Escalation
Posted by deepcore under exploit (No Respond)
Microsoft Windows AppX Deployment Service local privilege escalation exploit that bypasses CVE-2019-0841.
Zimbra XML Injection / Server-Side Request Forgery
Posted by deepcore under exploit (No Respond)
Zimbra versions prior to 8.8.1 suffer from XML external entity injection and server-side request forgery vulnerabilities.
WordPress Satoshi 2.0 Cross Site Request Forgery / File Upload
Posted by deepcore under exploit (No Respond)
WordPress Satoshi theme version 2.0 suffers from cross site request forgery and remote file upload vulnerabilities.
Supra Smart Cloud TV Remote File Inclusion
Posted by deepcore under exploit (No Respond)
Supra Smart Cloud TV suffers from an openLiveURL() remote file inclusion vulnerability.
[local] Microsoft Windows – AppX Deployment Service Local Privilege Escalation (3)
Posted by deepcore under Security (No Respond)
Microsoft Windows – AppX Deployment Service Local Privilege Escalation (3)
Tags: 0day, remote exploit[shellcode] Linux/x86_64 – Bind (4444/TCP) Shell (/bin/sh) Shellcode (131 bytes)
Posted by deepcore under Security (No Respond)