This Metasploit module exploits a vulnerability in the handling of Windows Shortcut files (.LNK) that contain a dynamic icon, loaded from a malicious DLL. This vulnerability is a variant of…
>> CATEGORY: exploit
VehicleWorkshop suffers from a remote file upload vulnerability.
SOL.Connect ISET-mpp meter version 1.2.4.2 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
This Metasploit module exploits an information disclosure vulnerability found in Advantech SUSIAccess versions 3.0 and below. The vulnerability is triggered when sending a GET request to the server with a…
macOS and iOS sandbox escapes and privilege escalation vulnerabilities exist due to unexpected shared memory-backed xpc_data objects.
Advantech SUSIAccess versions 3.0 and below suffers from a RecoveryMgmt file upload vulnerability.
This Metasploit module exploits an unsafe Javascript API implemented in Nitro and Nitro Pro PDF Reader version 11. The saveAs() Javascript API function allows for writing arbitrary files to the…
GNU libiberty suffers from a buffer overflow vulnerability.
FreeIPA version 2.213 suffers from a session hijacking vulnerability.
Friends in War Make or Break version 1.7 suffers from an unauthenticated administrative password change vulnerability.