Prowise Reflect 1.0.9 Remote Keystroke Injection
Posted by deepcore under exploit (No Respond)
Prowise Reflect version 1.0.9 suffers from a remote keystroke injection vulnerability.
Archive for March, 2022
Zyxel ZyWALL 2 Plus Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Zyxel ZyWALL 2 Plus suffers from a cross site scripting vulnerability.
http://suratpeo.go.th/boy.html
Posted by deepcore under defacement (No Respond)
http://suratpeo.go.th/boy.html notified by AnonCoders Brazil
Tags: defacementhttp://www.krabi.go.th/kt.html
Posted by deepcore under defacement (No Respond)
http://www.krabi.go.th/kt.html notified by KatakBeracun
Tags: defacementRufus 3.17.1846 DLL Hijacking
Posted by deepcore under exploit (No Respond)
Rufus version 3.17.1846 suffers from a dll hijacking vulnerability for both the executable and portable executable versions.
Firefox MCallGetProperty Write Side Effects Use-After-Free
Posted by deepcore under exploit (No Respond)
This Metasploit modules exploits CVE-2020-26950, a use-after-free exploit in Firefox. The MCallGetProperty opcode can be emitted with unmet assumptions resulting in an exploitable use-after-free condition. This exploit uses a somewhat novel technique of spraying ArgumentsData structures in order to construct primitives. The shellcode is forced into executable memory via the JIT compiler, and executed by […]
Packet Storm New Exploits For February, 2022
Posted by deepcore under exploit (No Respond)
This archive contains all of the 159 exploits added to Packet Storm in February, 2022.
[remote] Printix Client 1.3.1106.0 – Remote Code Execution (RCE)
Posted by deepcore under Security (No Respond)
[webapps] Zyxel ZyWALL 2 Plus Internet Security Appliance – Cross-Site Scripting (XSS)
Posted by deepcore under Security (No Respond)
Zyxel ZyWALL 2 Plus Internet Security Appliance – Cross-Site Scripting (XSS)
Tags: 0day, remote exploit[remote] Prowise Reflect v1.0.9 – Remote Keystroke Injection
Posted by deepcore under Security (No Respond)