Posts

ABB PB610 Multiple Security Vulnerabilities

Windows Escalate UAC Protection Bypass Via SilentCleanup

Google Chrome JS Execution Use-After-Free

Google Chrome AudioWorkletGlobalScope::Process Use-After-Free

LibreNMS 1.46 addhost Remote Code Execution

Linux/x86 /usr/bin/wget Shellcode

Windows/x86 iexplore.exe Shellcode

Windows/x86 bitsadmin Download And Execute Shellcode

Linux/x86 ASCII AND, SUB, PUSH, POPAD Encoder Shellcode

ImageMagick Multiple Security Vulnerabilities

GNU Binutils CVE-2019-12972 Heap Based Buffer Overflow Vulnerability

Coldfusion / JNBridge Remote Code Execution

AMD Secure Encrypted Virtualization (SEV) Key Recovery

D-Link Administrative Password Disclosure

Linux kernel CVE-2019-12817 Local Privilege Escalation Vulnerability

Nessus CVE-2019-3961 Cross Site Scripting Vulnerability

Nagios XI Magpie_debug.php Root Remote Code Execution

BlogEngine.NET 3.3.6 / 3.3.7 path Directory Traversal

Fortinet FCM-MB40 Cross Site Request Forgery / Remote Command Execution

WordPress Live Chat Unlimited 2.8.3 Cross Site Scripting

WordPress iLive 1.0.4 Cross Site Scripting

SAPIDO RB-1732 Remote Command Execution

SuperDoctor5 NRPE Remote Code Execution

Spidermonkey IonMonkey Incorrect Prediction

Buffer Overflows, C Programming, And More

Microsoft Windows Font Cache Service Insecure Sections

Microsoft Windows CmpAddRemoveContainerToCLFSLog Arbitrary File / Directory Creation

ABB IDAL HTTP Server Uncontrolled Format String

ABB IDAL HTTP Server Stack-Based Buffer Overflow

FortiCam FCM-MB40 Code Execution / Privilege Escalation

SeedDMS out.GroupMgr.php Cross Site Scripting

SeedDMS Remote Command Execution

SeedDMS out.UsrMgr.php Cross Site Scripting

dotProject 2.1.9 SQL Injection

GrandNode 4.40 Path Traversal / File Download

GSearch 1.0.1.0 Denial Of Service

AZADMIN CMS Of HIDEA 1.0 SQL Injection

Linux/x86_64 Reverse(0.0.0.0:4444/TCP) Shell (/bin/sh) Shellcode

ABB IDAL HTTP Server Authentication Bypass

ABB HMI Missing Signature Verification

ABB IDAL FTP Server Uncontrolled Format String

Cisco Prime Service Catalog CVE-2019-1875 Cross Site Scripting Vulnerability

BlogEngine.NET 3.3.6 / 3.3.7 XML Injection

Linux Race Condition Use-After-Free

WebERP 4.15 SQL Injection

Tuneclone 2.20 SEH Buffer Overflow

Koha Library Software 18.1106000 Open Redirection

Cisco Prime Infrastructure Health Monitor TarArchive Directory Traversal

Cisco Prime Infrastructure Runrshell Privilege Escalation

BlogEngine.NET 3.3.6 / 3.3.7 Theme Cookie Directory Traversal / Remote Code Execution