Exploits & CVE's

Authored by Maximilian Ammann wolfSSL versions prior to 5.5.2 suffer from a heap buffer over-read with WOLFSSL_CALLBACKS and can be triggered with a single Client Hello message. advisories | CVE-2022-42905 Change Mirror...

Authored by indoushka WordPress WPtouch Pro plugin version 3.3.4 suffers from an open redirection vulnerability. Change Mirror Download ====================================================================================================================================| # Title : WordPress - WPtouch Pro: 3.3.4 Open...

Authored by indoushka WordPress WPtouch Pro plugin version 4.3.47 suffers from an open redirection vulnerability. Change Mirror Download ====================================================================================================================================| # Title : WordPress - WPtouch 4.3.47 Open Redirect...

Authored by indoushka WordPress WPtouch plugin version 3.7.5 suffers from an open redirection vulnerability. Change Mirror Download ====================================================================================================================================| # Title : WordPress - WPtouch 3.7.5 Open Redirect Vulnerability...

Authored by nu11secur1ty Zstore version 6.5.4 suffers from a cross site scripting vulnerability. Change Mirror Download ## Title: zstore-6.5.4 - XSS-Reflected## Development: nu11secur1ty## Date: 01.18.2023## Vendor: https://zippy.com.ua/## Software: https://github.com/leon-mbs/zstore/releases/tag/6.5.4## Reproduce: https://github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/zippy/zstore-6.5.4## Description:The...

Authored by CraCkEr PHP Hazir Haber Sitesi Scripti version 3 suffers from a remote SQL injection vulnerability. Change Mirror Download ┌┌───────────────────────────────────────────────────────────────────────────────────────┐││ ...

Authored by CraCkEr Active eCommerce CMS version 6.5.0 suffers from a remote SQL injection vulnerability. Change Mirror Download ┌┌───────────────────────────────────────────────────────────────────────────────────────┐││ ...

Authored by Google Security Research, Glazvunov Chrome suffers from a copy-on-write check bypass in JSNativeContextSpecialization::BuildElementAccess. Change Mirror Download Chrome: Copy-on-write check bypass in JSNativeContextSpecialization::BuildElementAccessVULNERABILITY DETAILSCopy-on-write is one of V8's internal optimization features...

Authored by CraCkEr Jettweb Ready Rent A Car Script version 4 suffers from a cross site scripting vulnerability. Change Mirror Download ┌┌───────────────────────────────────────────────────────────────────────────────────────┐││ ...

Authored by h00die-gr3y, Jakub Kramarz | Site metasploit.com This Metasploit module exploits a command injection vulnerability in the Ivanti Cloud Services Appliance (CSA) for Ivanti Endpoint Manager. A cookie based...