Google Chrome 78.0.3904.70 Remote Code Execution
Posted by deepcore under exploit (No Respond)
Google Chrome version 78.0.3904.70 suffers from a use-after-free vulnerability that allows for remote code execution.
Archive for May, 2022
PyScript 2022-05-04-Alpha Source Code Disclosure
Posted by deepcore under exploit (No Respond)
PyScript version 2022-05-04-Alpha suffers from a source code disclosure vulnerability.
DLINK DAP-1620 A1 1.01 Directory Traversal
Posted by deepcore under exploit (No Respond)
DLINK DAP-1620 A1 version 1.01 suffers from a directory traversal vulnerability.
Beehive Forum 1.5.2 Account Takeover
Posted by deepcore under exploit (No Respond)
Beehive Forum version 1.5.2 suffers from an account takeover vulnerability.
MyBB 1.8.29 Remote Code Execution
Posted by deepcore under exploit (No Respond)
MyBB version 1.8.29 suffers from a remote code execution vulnerability.
WordPress Blue Admin 21.06.01 Cross Site Request Forgery
Posted by deepcore under exploit (No Respond)
WordPress Blue Admin plugin version 21.06.01 suffers from a cross site request forgery vulnerability.
Joomla SexyPolling 2.1.7 SQL Injection
Posted by deepcore under exploit (No Respond)
Joomla SexyPolling version 2.1.7 suffers from a remote SQL injection vulnerability.
Ruijie Reyee Mesh Router Remote Code Execution
Posted by deepcore under exploit (No Respond)
Ruijie Reyee mesh routers with ReyeeOS version 1.55.1915 EW_3.0(1)B11P35 and EW_3.0(1)B11P55 suffer from a remote code execution vulnerability.
Cisco RV340 SSL VPN Unauthenticated Remote Code Execution
Posted by deepcore under exploit (No Respond)
This Metasploit module exploits a stack buffer overflow in the Cisco RV series router’s SSL VPN functionality. The default SSL VPN configuration is exploitable, with no authentication required and works over the Internet! The stack is executable and no ASLR is in place, which makes exploitation easier. Successful execution of this module results in a […]