WordPress User Meta Manager plugin version 3.4.6 suffers from a privilege escalation vulnerability.
>> CATEGORY: exploit
WordPress Instagram 1.1.0 suffers from a cross site scripting vulnerability.
osTicket version 1.9.12 suffers from authentication bypass, session fixation, file upload, and cross site scripting vulnerabilities.
Netgear RP614v3 suffers from an authentication bypass vulnerability.
When you install Comodo Internet Security, by default a new browser called Chromodo is installed and set as the default browser. Additionally, all shortcuts are replaced with Chromodo links and…
There is an overflow in the ui::PlatformCursor WebCursor::GetPlatformCursor method in Google Chrome.
This mp4 file causes stack corruption in Flash. To run the test, load LoadMP42.swf?file=null.mp4 from a remote server.
This jpg file causes an invalid pointer to be freed when media scanning occurs on Samsung Galaxy S6.
This proof of concept file causes memory corruption when it is scanned by the face recognition library in android.media.process.
The default Samsung email client’s email viewer and composer (implemented in SecEmailUI.apk) doesn’t sanitize HTML email content for scripts before rendering the data inside a WebView. This allows an attacker…