[local] Trend Micro Maximum Security 2019 – Privilege Escalation
Posted by deepcore under Security (No Respond)
Archive for January, 2020
[dos] GTalk Password Finder 2.2.1 – 'Key' Denial of Service (PoC)
Posted by deepcore under Security (No Respond)
[webapps] WordPress Time Capsule Plugin 1.21.16 – Authentication Bypass
Posted by deepcore under Security (No Respond)
[local] Trend Micro Maximum Security 2019 – Arbitrary Code Execution
Posted by deepcore under Security (No Respond)
[webapps] WordPress Plugin InfiniteWP Client 1.9.4.5 – Authentication Bypass
Posted by deepcore under Security (No Respond)
[dos] APKF Product Key Finder 2.5.8.0 – 'Name' Denial of Service (PoC)
Posted by deepcore under Security (No Respond)
[local] Torrent FLV Converter 1.51 Build 117 – Stack Oveflow (SEH partial overwrite)
Posted by deepcore under Security (No Respond)
Torrent FLV Converter 1.51 Build 117 – Stack Oveflow (SEH partial overwrite)
Tags: 0day, remote exploitPlantronics Hub SpokesUpdateService Privilege Escalation
Posted by deepcore under exploit (No Respond)
The Plantronics Hub client application for Windows makes use of an automatic update service SpokesUpdateService.exe which automatically executes a file specified in the MajorUpgrade.config configuration file as SYSTEM. The configuration file is writable by all users by default. This module has been tested successfully on Plantronics Hub version 3.13.2 on Windows 7 SP1 (x64). This […]
Online Book Store 1.0 SQL Injection
Posted by deepcore under exploit (No Respond)
Online Book Store version 1.0 suffers from a remote SQL injection vulnerability.