Code Exploits Timeline
Page 1 of 40745 exploits
 |
Title | Author | Platform | Source | Description | Date |
|---|---|---|---|---|---|---|
|
AdobeCollabSync Buffer Overflow Adobe Reader X Sandbox Bypass | Felipe Andres Manzano | na | juan vazquez | This Metasploit module exploits a vulnerability on Adobe Reader X Sandbox. The vulnerability is due to a sandbox rule allowing a Low Integrity AcroRd32.exe process to write register values which can be used to trigger a buffer overflow on the AdobeCollabSync component, allowing to achieve Medium Integrity Level privileges from a Low Integrity AcroRd32.exe process. This Metasploit module has been tested successfully on Adobe Reader X 10.1.4 over Windows 7 SP1. | 21 hours ago |
|
|
Weyal CMS SQL Injection | XroGuE | na | Att4ck3r.ir | Weyal CMS suffers from a remote SQL injection vulnerability. Note that this finding has site-specific information. | 21 hours ago |
|
|
Nginx HTTP Server 1.3.9-1.4.0 Chuncked Encoding Stack Buffer Overflow | Greg MacManus | na | hal | This Metasploit module exploits a stack buffer overflow in versions 1.3.9 to 1.4.0 of nginx. The exploit first triggers an integer overflow in the ngx_http_parse_chunked() by supplying an overly long hex value as chunked block size. This value is later used when determining the number of bytes to read into a stack buffer, thus the overflow becomes possible. | 21 hours ago |
|
|
Spider Event Calendar 1.3.0 Cross Site Scripting / Path Disclosure / SQL Injection | Janek Vind aka waraxe | na | waraxe.us | Spider Event Calendar version 1.3.0 is a Wordpress plugin that suffers from multiple cross site scripting, path disclosure, and remote SQL injection vulnerabilities. | yesterday |
|
|
Spider Catalog 1.4.6 Cross Site Scripting / Path Disclosure / SQL Injection | Janek Vind aka waraxe | na | waraxe.us | Spider Catalog version 1.4.6 is a Wordpress plugin that suffers from multiple cross site scripting, path disclosure, and remote SQL injection vulnerabilities. | yesterday |
|
|
Wordpress Flagallery-Skins SQL Injection | Ashiyane Digital Security Team | na | packetstormsecurity.org | Wordpress Flagallery-skins plugin suffers from an SQL Injection vulnerability. Note that this advisory has site-specific information. | yesterday |
|
|
Ophcrack 3.50 Buffer Overflow / Code Execution | xis_one | na | ophcrack.sourceforge.net | Ophcrack version 3.5.0 suffers from stack based buffer overflow vulnerability that leads to local code execution. | Tuesday |
|
|
Kimai 0.9.2.1306-3 SQL Injection | drone | na | kimai.org | Kimai version 0.9.2.1306-3 suffers from a remote SQL injection vulnerability. | Tuesday |
|
|
win32k!EPATHOBJ::pprFlattenRec Uninitialized Next Pointer Testcase | Tavis Ormandy | windows | exploit-db.com | I'm quite proud of this list cycle trick, here's how to turn it into an arbitrary write. First, we create a watchdog thread that will patch the list atomically when we're ready. This is needed because we can't exploit the bug while HeavyAllocPool is failing, because of the early exit in pprFla | Tuesday |
|
|
Kimai 0.9.2.1306-3 - SQL Injection Vulnerability | drone | php | exploit-db.com | Exploit Title: Kimai 0.9.2.1306-3 SQLi Date: 05/20/2013 Exploit Author: drone (@dronesec) Vendor Homepage: http://www.kimai.org/ Software Link: https://downloads.sourceforge.net/project/kimai/0.9.x/kimai.0.9.2.1306-3.zip Version: 0.9.2.1306-3 Fixed in: source repositories (https | Tuesday |
|
|
Ophcrack 3.5.0 - Local Code Execution BOF | xis_one | windows | exploit-db.com | Exploit Title: ophcrack v3.5.0 - Local Code Execution BOF Date: 21.05.2013 Exploit Author: xis_one@STM Solutions Vendor Homepage: http://ophcrack.sourceforge.net/ Software Link: http://downloads.sourceforge.net/ophcrack/ophcrack-win32-installer-3.5.0.exe Version: 3.5.0 Tested | Tuesday |
|
|
Linksys WRT160nv2 apply.cgi Remote Command Injection | metasploit | hardware | exploit-db.com | This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'rex/proto/tftp' class | Tuesday |
|
|
Linksys WRT160n apply.cgi Remote Command Injection | Michael Messner | na | juan vazquez | Some Linksys Routers are vulnerable to an authenticated OS command injection on their web interface where default credentials are admin/admin or admin/password. Since it is a blind OS command injection vulnerability, there is no output for the executed command when using the cmd generic payload. This Metasploit module has been tested on a Linksys WRT160n version 2 - firmware version v2.0.03. A ping command against a controlled system could be used for testing purposes. The exploit uses the tftp client from the device to stage to native payloads from the command injection. | Tuesday |
|
|
Sony PS3 Firmware 4.31 Code Execution | Benjamin Kunz Mejri | na | vulnerability-lab.com | A local code execution vulnerability is detected in the official PlayStation 3 v4.31 Firmware. The vulnerability allows local attackers to inject and execute code out of vulnerable PlayStation 3 menu main web context. | Tuesday |
|
|
Trend Micro DirectPass 1.5.0.1060 Command Injection / Denial Of Service | Benjamin Kunz Mejri | na | vulnerability-lab.com | Trend Micro DirectPass 1.5.0.1060 suffers from local command/path injection, persistent code injection, and a denial of service vulnerability. | Tuesday |