Code Exploits Timeline
Page 2 of 40729 exploits
 |
Title | Author | Platform | Source | Description | Date |
|---|---|---|---|---|---|---|
|
SSH User Code Execution | Spencer McIntyre | na | metasploit.com | This Metasploit module utilizes a stager to upload a base64 encoded binary which is then decoded, chmod'ed and executed from the command shell. | May 15 |
|
|
Serva 32 TFTP 2.1.0 - Buffer Overflow Denial of service | Sapling | windows | exploit-db.com | Serva 32 TFTP Buffer overflow DoS 05/14/2013 Sapling Vendor homepage http://www.vercot.com/ Software Link: http://www.vercot.com/~serva/download/Serva_Non-Supporter_32_v2.1.0.zip Version 2.1.0 Only prior versions are not vulnerable Tested on Windows 8, Windows 7, Windows XP SP1-3 | May 15 |
|
|
Kloxo 6.1.12 Privilege Escalation | juan vazquez | na | HTP | Kloxo versions 6.1.12 and below contain two setuid root binaries. lxsuexec and lxrestart allow local privilege escalation to root from uid 48, Apache by default on CentOS 5.8, the operating system supported by Kloxo. This Metasploit module has been tested successfully with Kloxo 6.1.12 and 6.1.6. | May 15 |
|
|
Quick Search Version 1.1.0.189 Buffer Overflow Vulnerability (SEH) | ariarat | windows | exploit-db.com | Exploit Title: Quick Search Version 1.1.0.189 Buffer Overflow vulnerability(SEH) Date: 14-05-2013 Exploit Author: ariarat Vendor Homepage: http://www.glarysoft.com/ Software Link: http://download.glarysoft.com/qsearchsetup.exe Version: 1.1.0.189 Tested on: [ Windows 7 & windows | May 14 |
|
|
Wordpress wp-FileManager - Arbitrary File Download Vulnerability | ByEge | php | exploit-db.com | Title: Wordpress wp-FileManager Local File Download Vulnerability Author: ByEge Download: http://wordpress.org/extend/plugins/wp-filemanager/ Test Platform: Linux Images: http://j1305.hizliresim.com/19/f/n0xxf.jpg Vuln. Plat.: Web Application Google Dorks: inurl:wp-content/plugins/wp-fil | May 14 |
|
|
Wordpress Newsletter 3.2.6 Cross Site Scripting | LiquidWorm | na | zeroscience.mk | Wordpress Newletter plugin version 3.2.6 suffers from a cross site scripting vulnerability. | May 14 |
|
|
Netcraft.com Cross Site Scripting | Stefan Schurtz | na | packetstormsecurity.org | www.netcraft.com suffered from a cross site scripting vulnerability. | May 14 |
|
|
Ruby Gem Creme Fraiche 0.6 Command Injection | Larry W. Cashdollar | na | packetstormsecurity.org | Ruby Gem Creme Fraiche version 0.6 suffers from a remote command injection vulnerability due to unsanitized input. | May 14 |
|
|
WordPress Video JS Cross Site Scripting | MustLive | na | packetstormsecurity.org | Various WordPress plugins that embed video-js.swf suffer from cross site scripting vulnerabilities. These include Video Embed and Thumbnail Generator, External "Video for Everybody", 1player, S3 Video and EasySqueezePage. | May 14 |
|
|
Kloxo 6.1.6 Privilege Escalation | na | packetstormsecurity.org | Kloxo version 6.1.6 suffers from a local privilege escalation vulnerability. | May 14 | |
|
|
Joomla Jnews 8.0.1 Cross Site Scripting | Rafay Baloch | na | Deepankar Arora | Joomla Jnews version 8.0.1 suffers from an Open Flash-Chart cross site scripting vulnerability. | May 14 |
|
|
UMI.CMS 2.9 - CSRF Vulnerability | High-Tech Bridge . | php | exploit-db.com | Advisory ID: HTB23151 Product: UMI.CMS Vendor: OOO Umisoft Vulnerable Version(s): 2.9 and probably prior Tested Version: 2.9 Vendor Notification: April 3, 2013 Vendor Patch: May 7, 2013 Public Disclosure: May 8, 2013 Vulnerability Type: Cross-Site Request Forgery [CWE-352] CVE Reference: | May 14 |
|
|
Linux Kernel open-time Capability file_ns_capable() Privilege Escalation | Andrew Lutomirski | linux | exploit-db.com |
/* userns_root_sploit.c by */
/* Copyright (c) 2013 Andrew Lutomirski. All rights reserved. */
/* You may use, modify, and redistribute this code under the GPLv2. */
define _GNU_SOURCE
include | May 14 |
|
|
|
AlienVault OSSIM 4.1.2 - Multiple SQL Injection Vulnerabilities | RunRunLevel | php | exploit-db.com | RunRunLevel Web Security Research - AlienVault OSSIM multiple SQL Injection vulnerabilities Vendor Website : http://www.alienvault.com INDEX --------------------------------------- 1. Background 2. Description 3. Affected Products 4. Vulnerabilities 5. Solution 6. | May 14 |
|
|
Linux PERF_EVENTS - Local Root Exploit | sd | linux | exploit-db.com | /* * linux 2.6.37-3.x.x x86_64, ~100 LOC * gcc-4.6 -O2 semtex.c && ./a.out * 2010 sd@fucksheep.org, salut! * * update may 2013: * seems like centos 2.6.32 backported the perf bug, lol. * jewgold to 115T6jzGrVMgQ2Nt1Wnua7Ch1EuL9WXT2g if you insist. */ define _GNU_SOURCE 1 includ | May 14 |