16 Jan, 2022

Latest Exploits, Tools News

The Latest Infosec News, Tools, and Exploits – Got Root?

Home
Home
Tools
Exploits
Tutorials
News

Search for:

Home
Exploits

Category: Exploits

WordPress Plugin wpDiscuz 7.0.4 – Arbitrary File Upload Exploit

June 7, 2021June 7, 2021 Admin

The WordPress plugin wpDiscuz version 7.0.4 suffers an arbitrary file upload vulnerability that does not require authentication.

Leave a commentExploitsarbitrary file upload, wordpress, wpDiscuz

MyBB 1.8.25 – Chained Remote Command Execution Exploit

March 23, 2021March 23, 2021 Admin

MyBB version 1.8.25 suffers from a chained remote command execution (RCE) flaw. Upgrade to version 1.8.26

Leave a commentExploitsmybb, rce, remote code execution

Microsoft Internet Explorer 11 32-bit – Use-After-Free Exploit

February 8, 2021February 8, 2021 Admin

Microsoft Windows Internet Explorer 11 32-bit adition suffers a Use-After-Free Exploit

Leave a commentExploitsinternet explorer, microsoft, use after free, windows

Sudo 1.9.5p1 – ‘Baron Samedit ‘ Heap-Based Buffer Overflow Privilege Escalation Exploit

February 3, 2021February 3, 2021 Admin

Leave a commentExploitsbof, heap based buffer overflow, privilege escalation, SUDO

Pixelimity 1.0 – ‘password’ Cross-Site Request Forgery Vulnerability

February 3, 2021February 3, 2021 Admin

The software Pixelimity version 1.0 suffers from a password CSRF (Cross Site Request Forgery) vulnerability.

Leave a commentExploitscross site request forgery, csrf, Pixelimity

Roundcube Webmail 1.2 – File Disclosure Vulnerability

February 1, 2021February 1, 2021 Admin

The software Roundcube Webmail version 1.2 suffers from a File Disclosure vulnerability.

Leave a commentExploitsFile disclosure, roundcube webmail

WordPress 5.0.0 – Image Remote Code Execution

February 1, 2021February 1, 2021 Admin

The WordPress CMS version 5.0.0 suffers from a Image Remote Code Execution vulnerability via access with at least an Author account.

Leave a commentExploitsrce, remote code execution, wordpress

SonicWall SSL-VPN 8.0.0.0 Vulnerable to ‘shellshock/visualdoor’ Remote Code Execution (Unauthenticated)

January 29, 2021January 29, 2021 Admin

SonicWall SSL-Virutal Private Network version 8.0.0.0 is vulnerable to “shellshock/visualdoor” RCE (Remote Code Execution) Unauthenticated.

Leave a commentExploitsrce, remote code execution, sonicwall, ssl, vpn

MyBB Timeline Plugin 1.0 – Cross-Site Scripting / CSRF

January 25, 2021January 25, 2021 Admin

The MyBB Forum plugin Timeline version 1.0 is vulnerable to XSS(Cross site Scripting) and CSRF(Cross Site Request Forgery) attacks.

Leave a commentExploitscross site request forgery, cross site scripting, csrf, mybb, xss

Oracle Business Intelligence Enterprise Edition 11.1.1.7.140715 – Stored XSS Exploit

January 20, 2021January 20, 2021 Admin

Oracle Business Intelligence Enterprise Edition version 11.1.1.7.140715 is vulnerable to a stored cross site scripting exploit.

Leave a commentExploitscross site scripting, Oracle, oracle business intelligence, xss

Posts navigation

1 2 … 21 Next

Latest Tools

Latest News

Puget Sound Educational Service District Says King and Pierce County Schools Hacked

14 Jan 2021

On January 12th 2021 Puget Sound Educational Service District released a statement saying their networks were hacked. According to their...

Ticketmaster To Pay $10 Million in Fines After Hacking Competitor.

4 Jan 2021

According the Department of Justice in the United States Ticketmaster, the ticket sales company, is ordered to pay $10 million...

Spotify Suffers Breach of User Information

24 Nov 2020

A large number of Spotify users have already been urged to examine their protection safety carrying out a main cyber...

Easy Tesla Model X Keyfob Exploit Breaks in No Time

24 Nov 2020

In accordance with a written report published today, Wouters explained this third attack performs as a result of defect inside...

Magazine Plus by WEN Themes

Posting....