Exploits & CVE's

Authored by Google Security Research, mjurczyk Microsoft Windows Kernel renaming layered keys does not reference count security descriptors, leading to a use-after-free condition. advisories | CVE-2023-35382

Authored by Harsh Jaiswal, Sina Kheirkhah, Rahul Maini | Site summoning.team VMWare Aria Operations for Networks (vRealize Network Insight) static SSH key remote code execution proof of concept exploit. advisories |...

Authored by LiquidWorm | Site zeroscience.mk Tinycontrol LAN Controller version 3 suffers from an unauthenticated remote denial of service vulnerability. An attacker can issue direct requests to the stm.cgi page...

Authored by LiquidWorm | Site zeroscience.mk Tinycontrol LAN Controller version 3 suffers from an issue where an unauthenticated attacker can retrieve the controller's configuration backup file and extract sensitive information...

Authored by LiquidWorm | Site zeroscience.mk Tinycontrol LAN Controller version 3 suffers from an insecure access control allowing an unauthenticated attacker to change accounts passwords and bypass authentication gaining panel...

Authored by watchTowr Labs Team | Site github.com A proof of concept exploit for chaining four CVEs to achieve remote code execution in Juniper JunOS within SRX and EX Series...

Authored by h00die, Matei Mal Badanoiu | Site metasploit.com The DBCPConnectionPool and HikariCPConnectionPool Controller Services in Apache NiFi 0.0.2 through 1.21.0 allow an authenticated and authorized user to configure a...

Authored by indoushka IQ-Medya CMS version 2.0 suffers from a cross site scripting vulnerability. Change Mirror Download ====================================================================================================================================| # Title : İQ-Medya CMS v2.0 XSS Vulnerability ...

Authored by indoushka InterPhoto version 2.3.0 suffers from a remote shell upload vulnerability. Change Mirror Download ====================================================================================================================================| # Title : InterPhoto 2.3.0 Persians Remote Shell Upload vulnerability ...

Authored by indoushka Invasor Diagonal CMS version 1.0 suffers from a cross site scripting vulnerability. Change Mirror Download ====================================================================================================================================| # Title : Invasor Diagonal CMS 1.0 XSS Vulnerability...