>> TAG: #0day

Collabtive 1.2 – SQL Injection

OpenFiler 2.99.1 – Arbitrary Code Execution

SQL Injection in Insert, Update and Delete Statements

Linux/x86 – setreuid() + execve(/usr/bin/python) Shellcode (54 bytes)

Windows NTUserMessageCall Win32k Kernel Pool Overflow (Schlamperei)

Adobe Flash Player Integer Underflow Remote Code Execution

TeamHelpdesk Customer Web Service (CWS) 8.3.5 & Technician Web Access (TWA) 8.3.5 – Remote User Credential Dump

NETGEAR DGN2200 1.0.0.29_1.7.29_HotS – CSRF Vulnerability

Seagate BlackArmor NAS – Multiple Vulnerabilities

Crime24 Stealer Panel 1.0 – Multiple Vulnerabilities