Exploits & CVE's

Authored by Blasty, jheysel-r7, Qualys Threat Research Unit | Site metasploit.com A buffer overflow exists in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment variable. It...

Authored by Valentin Lobstein, Gregory Boddin | Site metasploit.com This Metasploit module exploits a command injection vulnerability in Vinchin Backup & Recovery v5.0.*, v6.0.*, v6.7.*, and v7.0.*. Due to insufficient...

Authored by Valentin Lobstein MajorDoMo versions prior to 0662e5e suffer from an unauthenticated remote code execution vulnerability. advisories | CVE-2023-50917 Change Mirror Download **Introduction**MajorDoMo, a beacon in Russian home automation and particularly favored...

Authored by Atlassian, jheysel-r7 | Site metasploit.com This improper authorization vulnerability allows an unauthenticated attacker to reset Confluence and create a Confluence instance administrator account. Using this account, an attacker...

Authored by Jorg Schwenk, Marcus Brinkmann, Fabian Baumer | Site terrapin-attack.com In this paper, the authors show that as new encryption algorithms and mitigations were added to SSH, the SSH...

Authored by Sandro Gauci | Site enablesecurity.com When handling DTLS-SRTP for media setup, Asterisk version 20.1.0 is susceptible to denial of service due to a race condition in the hello...

Authored by EgiX | Site karmainsecurity.com PKP Web Application Library (PKP-WAL) versions 3.4.0-3 and below, as used in Open Journal Systems (OJS), Open Monograph Press (OMP), and Open Preprint Systems...

Authored by Sandro Gauci | Site enablesecurity.com RTPEngine version mr11.5.1.6 suffers from a denial of service vulnerability via DTLS Hello packets during call initiation. Change Mirror Download # RTPEngine susceptible to Denial...

Authored by R3tro74 | Site retr0.zip Proof of concept exploit for a new technique to escape from the Chrome V8 sandbox.

Authored by nu11secur1ty osCommerce version 4.13-60075 suffers from a remote shell upload vulnerability. Change Mirror Download ## Title: osCommerce 4.13-60075 File-Upload-RCE## Author: nu11secur1ty## Date: 12/14/2023## Vendor: https://www.oscommerce.com/## Software: https://www.oscommerce.com/download-file## Reference: https://portswigger.net/web-security/file-upload## Description:The...