This Metasploit modules exploits a type confusion in Google Chrome’s JIT compiler. The Object.create operation can be used to cause a type confusion between a PropertyArray and a NameDictionary. The…
>> AUTHOR: deepcore
This Metasploit module exploits an underflow vulnerability in PHP-FPM versions 7.1.x below 7.1.33, 7.2.x below 7.2.24 and 7.3.x below 7.3.11 of PHP-FPM on Nginx. Only servers with certain Nginx +…
This Metasploit module exploits a directory traversal vulnerability (CVE-2015-1830) in Apache ActiveMQ versions 5.x before 5.11.2 for Windows. The module tries to upload a JSP payload to the /admin directory…
Deep Instinct Windows Agent 1.2.29.0 – ‘DeepMgmtService’ Unquoted Service Path
Deep Instinct Windows Agent 1.2.29.0 – ‘DeepMgmtService’ Unquoted Service Path
Iskysoft Application Framework Service 2.4.3.241 – ‘IsAppService’ Unquoted Service Path
Iskysoft Application Framework Service 2.4.3.241 – ‘IsAppService’ Unquoted Service Path
SpyHunter 4 – ‘SpyHunter 4 Service’ Unquoted Service Path
SpyHunter 4 – ‘SpyHunter 4 Service’ Unquoted Service Path
ASUS GiftBox Desktop 1.1.1.127 – ‘ASUSGiftBoxDesktop’ Unquoted Service Path