XNU suffers from a use-after-free vulnerability due to a stale pointer left by in6_pcbdetach.
This Metasploit module exploits a php object instantiation vulnerability that can lead to remote code execution in Shopware. An authenticated backend user could exploit the vulnerability. The vulnerability exists in…
This Metasploit module exploits a race condition vulnerability in Mac’s Feedback Assistant. A successful attempt would result in remote code execution under the context of root.
This Metasploit module exploits a vulnerability in the FreeBSD run-time link-editor (rtld). The rtld unsetenv() function fails to remove LD_* environment variables if __findenv() fails. This can be abused to…
Microsoft Internet Explorer 11 – Sandbox Escape
Microsoft Windows (x84) – Task Scheduler’ .job’ Import Arbitrary Discretionary Access Control List Write / Local Privilege Escalation
Microsoft Windows (x84/x64) – ‘Error Reporting’ Discretionary Access Control List / Local Privilege Escalation
Horde Webmail 5.2.22 – Multiple Vulnerabilities
TapinRadio 2.11.6 – ‘Uername’ Denial of Service (PoC)
BlueStacks 4.80.0.1060 – Denial of Service (PoC)