The Windows Font Cache Service exposes section objects insecurely to low privileged users resulting in elevation of privilege.
>> CATEGORY: exploit
Koha Library Software version 18.1106000 suffers from an open redirection vulnerability.
Tuneclone version 2.20 local SEH buffer overflow exploit.
Linux suffers from a use-after-free via a race condition between modify_ldt() and #BR exception.
BlogEngine.NET versions 3.3.6 and 3.3.7 suffer from an XML external entity injection vulnerability.
WebERP version 4.15 suffers from a remote SQL injection vulnerability.
BlogEngine.NET versions 3.3.6 and 3.3.7 suffer from dirPath directory traversal and remote code execution vulnerabilities.
BlogEngine.NET versions 3.3.6 and 3.3.7 suffer from theme Cookie directory traversal and remote code execution vulnerabilities.
This Metasploit modules exploits a vulnerability in Cisco Prime Infrastructure’s runrshell binary. The runrshell binary is meant to execute a shell script as root, but can be abused to inject…
This Metasploit module exploits a vulnerability found in Cisco Prime Infrastructure. The issue is that the TarArchive Java class the HA Health Monitor component uses does not check for any…