QNAP TS-431 QTS < 4.2.2 – Remote Command Execution (Metasploit)
>> TAG: #remote exploit
QNAP TS-431 QTS < 4.2.2 – Remote Command Execution (Metasploit)
Anyburn 4.3 x86 – ‘Copy disc to image file’ Buffer Overflow – (UNICODE)(SEH)
FreeBSD – Intel SYSRET Privilege Escalation (Metasploit)
Drupal < 8.5.11 / < 8.6.10 – RESTful Web Services unserialize() Remote Command Execution (Metasploit)
Android – binder Use-After-Free via racy Initialization of ->allow_user_free
Linux < 4.20.14 – Virtual Address 0 is Mappable via Privileged write() to /proc/*/mem
Android – getpidcon() Usage in Hardware binder ServiceManager Permits ACL Bypass
OpenDocMan 1.3.4 – ‘search.php where’ SQL Injection
OpenDocMan 1.3.4 – ‘search.php where’ SQL Injection
Linux/x86 – XOR Encoder / Decoder execve() /bin/sh Shellcode (45 bytes)