This Metasploit module exploits an issue in Google Chrome versions before 87.0.4280.88 (64 bit). The exploit makes use of an integer overflow in the SimplifiedLowering phase in turbofan. It is used along with a typer hardening bypass using ArrayPrototypeShift to create a JSArray with a length of -1. This is abused to gain arbitrary read/write […]
CMSimple version 5.2 suffers from a persistent cross site scripting vulnerability.
Trojan.Win32.Hosts2.yqf malware suffers from an insecure permissions vulnerability.
Trojan-Downloader.Win32.Genome.omht malware suffers from an insecure permissions vulnerability.
Trojan-Downloader.Win32.Genome.qiw malware suffers from an insecure permissions vulnerability.
Composr version 10.0.36 suffers from a remote shell upload vulnerability.
Trojan.Win32.Hotkeychick.d malware suffers from an insecure permissions vulnerability.
Linux kernel version 5.4 BleedingTooth bluetooth zero-click proof of concept remote code execution exploit.
Backdoor.Win32.Hupigon.das malware has an unauthenticated open proxy functionality.
The D-Link DSL-320B-D1 ADSL modem suffers from multiple pre-authentication stack buffer overflow vulnerabilities.