>> CATEGORY: exploit

LogoStore suffers from a remote SQL injection vulnerability.

Bitrix Site Manager suffers from a cross site scripting vulnerability.

WordPress versions 4.7.0 and 4.7.1 REST API post privilege escalation and defacement exploit. Originally vulnerability discovered by Sucuri’s research team.

Android suffers from an RKP related memory corruption vulnerability in rkp_set_init_page_ro.

This archive contains 229 exploits that were added to Packet Storm in January, 2017.

TrueOnline is a major ISP in Thailand, and it distributes a customised version of the ZyXEL P660HN-T v1 router. This customised version has an unauthenticated command injection vulnerability in the…

TrueOnline is a major ISP in Thailand, and it distributes a customized version of the Billion 5200W-T router. This customized version has at least two command injection vulnerabilities, one authenticated…

This Metasploit module exploits a vulnerability present in the Cisco WebEx Chrome Extension version 1.0.1 which allows an attacker to execute arbitrary commands on a system.

TrueOnline is a major ISP in Thailand, and it distributes a customized version of the ZyXEL P660HN-T v2 router. This customized version has an authenticated command injection vulnerability in the…

MRF Web Administration Panel (SWMS) version 9.0.1 is vulnerable to OS command injection attacks.