na exploits
Page 1 of 24515 exploits
 |
Title | Author | Platform | Source | Description | Date |
|---|---|---|---|---|---|---|
|
Wordpress Flagallery-Skins SQL Injection | Ashiyane Digital Security Team | na | packetstormsecurity.org | Wordpress Flagallery-skins plugin suffers from an SQL Injection vulnerability. Note that this advisory has site-specific information. | 17 hours ago |
|
|
Ophcrack 3.50 Buffer Overflow / Code Execution | xis_one | na | ophcrack.sourceforge.net | Ophcrack version 3.5.0 suffers from stack based buffer overflow vulnerability that leads to local code execution. | yesterday |
|
|
Kimai 0.9.2.1306-3 SQL Injection | drone | na | kimai.org | Kimai version 0.9.2.1306-3 suffers from a remote SQL injection vulnerability. | yesterday |
|
|
Linksys WRT160n apply.cgi Remote Command Injection | Michael Messner | na | juan vazquez | Some Linksys Routers are vulnerable to an authenticated OS command injection on their web interface where default credentials are admin/admin or admin/password. Since it is a blind OS command injection vulnerability, there is no output for the executed command when using the cmd generic payload. This Metasploit module has been tested on a Linksys WRT160n version 2 - firmware version v2.0.03. A ping command against a controlled system could be used for testing purposes. The exploit uses the tftp client from the device to stage to native payloads from the command injection. | yesterday |
|
|
Sony PS3 Firmware 4.31 Code Execution | Benjamin Kunz Mejri | na | vulnerability-lab.com | A local code execution vulnerability is detected in the official PlayStation 3 v4.31 Firmware. The vulnerability allows local attackers to inject and execute code out of vulnerable PlayStation 3 menu main web context. | yesterday |
|
|
Trend Micro DirectPass 1.5.0.1060 Command Injection / Denial Of Service | Benjamin Kunz Mejri | na | vulnerability-lab.com | Trend Micro DirectPass 1.5.0.1060 suffers from local command/path injection, persistent code injection, and a denial of service vulnerability. | yesterday |
|
|
WordPress ProPlayer Plugin SQL Injection | Ashiyane Digital Security Team | na | packetstormsecurity.org | WordPress ProPlayer Plugin version 4.7.9.1 suffers from a remote SQL injection vulnerability. Note that this advisory has site-specific information. | Monday |
|
|
D-Link DIR615h OS Command Injection | Michael Messner | na | juan vazquez | Some D-Link Routers are vulnerable to an authenticated OS command injection on their web interface, where default credentials are admin/admin or admin/password. Since it is a blind os command injection vulnerability, there is no output for the executed command when using the cmd generic payload. This Metasploit module was tested against a DIR-615 hardware revision H1 - firmware version 8.04. A ping command against a controlled system could be used for testing purposes. The exploit uses the wget client from the device to convert the command injection into an arbitrary payload execution. | Monday |
|
|
Moxiecode Image Manager 3.1.5 Shell Upload | MustLive | na | packetstormsecurity.org | Moxiecode Image Manager (MCImageManager) versions 3.1.5 and below suffer from a remote shell upload vulnerability. Moxiecode is a commercial plugin for TinyMCE. | Sunday |
|
|
Glibc 2.11.3 / 2.12.x LD_AUDIT libmemusage.so Local Root | Todor Donev | na | packetstormsecurity.org | Local root exploit for Glibc versions 2.11.3 and 2.12.x utilizing LD_AUDIT libmemusage.so. | May 17 |
|
|
Moxiecode File Manager 3.1.5 Shell Upload | MustLive | na | packetstormsecurity.org | Moxiecode File Manager (MCFileManager) versions 3.1.5 and below suffer from a remote shell upload vulnerability. Moxiecode is a commercial plugin for TinyMCE. | May 17 |
|
|
Nginx 1.3.9 / 1.4.0 Denial Of Service | Mert SARICA | na | mertsarica.com | Nginx versions 1.3.9 through 1.4.0 suffer from a denial of service vulnerability. | May 17 |
|
|
Glibc 2.12.x, 2.11.3, 2.12.2 LD_AUDIT libmemusage.so Local Root | Todor Donev | na | packetstormsecurity.org | Local root exploit for Glibc versions 2.11.3 and 2.12.x utilizing LD_AUDIT libmemusage.so. | May 17 |
|
|
Mutiny 5 Arbitrary File Upload | juan vazquez | na | metasploit.com | This Metasploit module exploits a code execution flaw in the Mutiny 5 appliance. The EditDocument servlet provides a file upload function to authenticated users. A directory traversal vulnerability in the same functionality allows for arbitrary file upload, which results in arbitrary code execution with root privileges. In order to exploit the vulnerability a valid user (any role) in the web frontend is required. The module has been tested successfully on the Mutiny 5.0-1.07 appliance. | May 16 |
|
|
Serva 32 TFTP 2.1.0 Denial Of Service | Sapling | na | packetstormsecurity.org | Serva 32 TFTP version 2.1.0 suffers from a buffer overflow that can lead to a denial of service vulnerability. | May 15 |