This Metasploit module exploits a SUID installation of the Emacs movemail utility to run a command as root by writing to 4.3BSD’s /usr/lib/crontab.local. The vulnerability is documented in Cliff Stoll’s…
>> CATEGORY: exploit
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett Packard Enterprise Intelligent Management Center. Authentication is not required to exploit this vulnerability. The specific flaw…
Seopanel version 3.13.0 suffers from cross site scripting vulnerabilities.
This archive contains all of the 210 exploits added to Packet Storm in November, 2018.
Joomla JCE component versions 2.6.7.1 through 2.6.33 suffer from an arbitrary file upload vulnerability.
Joomla JCE component versions 2.5.24 through 2.6.33 suffer from a database backup disclosure vulnerability.
The KPOT Botnet suffers from an arbitrary file disclosure vulnerability that can also disclose credentials.
Linux Kernel version 4.8 on Ubuntu 16.04 suffers from an sctp kernel pointer leak vulnerability.
Schneider Electric PLC suffers from a session calculation authentication bypass vulnerability.
This Metasploit module exploits a stack based buffer overflow in HTML5 Video Player 1.2.5.