Event Calendar PHP version 1.5 suffers from a remote SQL injection vulnerability.
>> CATEGORY: exploit
Telegram Web version 0.5.5 allows you to set a null username due to a client-side mitigation for null bytes.
This Metasploit module exploits an arbitrary PHP code upload in thewordpress Ifileupload plugin, The vulnerability allows for unauthorization file upload and remote code execution.
Microsoft Visual Studio 2010 suffers from a dll hijacking vulnerability.
DirtyCow local root proof of concept exploit that overwrites passwd.
This exploit demonstrates a race condition in the Linux kernel’s memory subsystem and how it handles the copy-on-write (COW) breakage of private read-only memory mappings.
The vulnerability laboratory core research team discovered a multiple cross site scripting vulnerabilities in the Flash…
Microsoft Edge suffers from an Array.join information leakage vulnerability.
Windows Kernel Registry Hive loading suffers from a negative RtlMoveMemory size in nt!CmpCheckValueList.
Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed version 15.1.0.0096 suffers from an unquoted service path privilege escalation vulnerability.