WordPress Current Book plugin version 1.0.1 suffers from a persistent cross site scripting vulnerability.
>> CATEGORY: exploit
This is a proof of concept for CVE-2021-28476 (“Hyper-V Remote Code Execution Vulnerability”), an arbitrary memory read in vmswitch.sys (network virtualization service provider) patched by Microsoft in May 2021.
Proof of concept exploit for an out-of-bounds access vulnerability in the Realtek RTKVHD64.sys, leading to pool corruption.
This is a proof of concept for a Windows TCP/IP denial of service vulnerability due to a NULL dereference in tcpip.sys. This was patched by Microsoft in February 2021. It…
Microsoft Windows has an issue where you can use the CreateProcessWithLogon API to escape a write restricted service and achieve full write access as the service user.
XNU suffers from a network stack kernel heap overflow due to an out-of-bounds memmove in 6lowpan. Proof of concept code included.
Multiple Schneider Electric EVlink Charging Stations suffers from authentication bypass and remote code execution vulnerabilities.
These are details on an open redirection vulnerability in Apache Tomcat version 9.0.0M1 that was discovered in 2018.
These are details on a cross site scripting vulnerability in Apache Tomcat version 9.0.0M1 that was discovered in 2019.
HEUR.Backdoor.Win32.Agent.gen malware suffers from an insecure permissions vulnerability.