>> CATEGORY: exploit

There is a heap buffer overflow in libgcrypt due to an incorrect assumption in the block buffer management code. Just decrypting some data can overflow a heap buffer with attacker…

This archive contains all of the 231 exploits added to Packet Storm in January, 2021.

MyBB Hide Thread Content plugin version 1.0 suffers from an information leakage vulnerability.

Backdoor.Win32.Zetronic malware suffers from a denial of service vulnerability.

Home Assistant Community Store (HACS) version 1.10.0 suffers from a path traversal vulnerability that allows for account takeover.

Backdoor.Win32.Zhangpo malware suffers from a denial of service vulnerability.

Backdoor.Win32.Mhtserv.b malware suffers from a missing authentication vulnerability.

Quick.CMS versions 6.7 and below suffer from an authenticated remote code execution vulnerability.

Online Grading System version 1.0 suffers from a remote SQL injection vulnerability.

BloofoxCMS version 0.5.2.1 suffers from a persistent cross site scripting vulnerability.