Microsoft Office Word versions 2007, 2010, 2013, and 2016 suffer from an out-of-bounds read that allows for remote code execution. This vulnerability is noted in MS16-099.
>> CATEGORY: exploit
Microsoft Internet Explorer read AV in MSHTML!CMultiReadStreamLifetimeManager::ReleaseThreadStateInternal proof of concept exploit.
This Metasploit module abuses a vulnerability in WebNMS Framework Server 5.2 that allows an unauthenticated user to upload text files by using a directory traversal attack on the FileUploadServlet servlet….
FreePBX versions 13 and 14 remote command execution exploit.
Apache OpenMeetings version 3.1.0 suffers from a cross site scripting vulnerability.
Zabbix version 3.0.3 suffers from a remote SQL injection vulnerability.
The NVRmini 2 Network Video Recorder and the ReadyNAS Surveillance application are vulnerable to an unauthenticated remote code execution on the exposed web administration interface. This results in code execution…
The NVRmini 2 Network Video Recorder, Crystal NVR and the ReadyNAS Surveillance application are vulnerable to an authenticated remote code execution on the exposed web administration interface. An administrative account…
Routers manufactured by Netcore, a popular brand for networking equipment in China, have a wide-open backdoor that can be fairly easily exploited by attackers. These products are also sold under…
SAP CAR archive tool suffers from security bypass and denial of service vulnerabilities.