ThinkAdmin 6 Arbitrary File Read
ThinkAdmin version 6 suffers from an arbitrary file read vulnerability.ThinkAdmin version 6 suffers from an arbitrary file read vulnerability.
Category: Exploits
Microsoft Windows Finger Security Bypass / C2 Channel
Microsoft Windows TCPIP Finger Command finger.exe that ships with the OS, can be used as a file downloader and makeshift C2 channel. Legitimate use of Windows Finger Command is to send Finger Protocol queries to […]
Linux expand_downwards() / munmap() Race Condition
A race condition exists with munmap() downgrades in Linux kernel versions since 4.20.
Tiandy IPC / NVR 9.12.7 Credential Disclosure
Tiandy IPC and NVR version 9.12.7 suffer from a credential disclosure vulnerability.
ZTE F602W CAPTCHA Bypass
The ZTE F602W router suffers from a CAPTCHA bypass vulnerability.
Microsoft Internet Explorer 11 Use-After-Free
Microsoft Internet Explorer 11 use-after free exploit that triggers when Array.sort() is called with a comparator function. The two arguments are untracked by the garbage collector.
Tea LaTex 1.0 Remote Code Execution
Tea LaTex version 1.0 suffers from an unauthenticated remote code execution vulnerability.
VTENEXT 19 CE Remote Code Execution
VTENEXT 19 CE suffers from a remote code execution vulnerability.
Yaws 2.0.7 XML Injection / Command Injection
Yaws versions 1.81 through 2.0.7 suffer from remote OS command injection and XML external entity injection vulnerabilities.
