Exploits & CVE's

Authored by Emmanuel Lujan Acer Updater Service version 1.2.3500.0 suffers from an unquoted service path vulnerability. Change Mirror Download # Exploit Title: Acer Updater Service 1.2.3500.0 - 'UpdaterService.exe' Unquoted Service Path#...

Authored by nu11secur1ty Spotweb-Develop version 1.4.9 suffers from a cross site scripting vulnerability. Change Mirror Download # Exploit Title: Cross Site Scripting (DOM Based) spotweb-develop 1.4.9# Author: @nu11secur1ty# Testing and Debugging: nu11secur1ty...

Authored by Carlo Di Dato, Michael Caruso Mozilla Firefox versions 88.0.1 and below suffer from an issue that allows for execution of a file holding arbitrary code just by downloading...

Authored by Ramella Sebastien | Site metasploit.com This Metasploit module scan for a vulnerability on Microsoft Exchange Server that allows an attacker bypassing the authentication and impersonating as the admin...

Authored by Roman Fiedler | Site unparalleled.eu A missing length check in libX11 allows data from LookupColor requests to mess up the client-server communication protocol and inject malicious X server...

Authored by Mansoor R WordPress WP Statistics plugin versions 13.0 to 13.0.7 suffer from a remote unauthenticated blind SQL injection vulnerability. Change Mirror Download # Exploit Title: WordPress Plugin WP Statistics 13.0.7...

Authored by Paolo Stagno DELL dbutil_2_3.sys version 2.3 arbitrary write to local privilege escalation exploit. advisories | CVE-2021-21551 Change Mirror Download # Exploit Title: DELL dbutil_2_3.sys 2.3 - Arbitrary Write to Local Privilege...

Authored by Gulab Mondal In4Suit ERP version 3.2.74.1370 suffers from a remote SQL injection vulnerability. Change Mirror Download # Exploit Title: In4Suit ERP 3.2.74.1370 - 'txtLoginId' SQL injection# Date: 18/05/2021# Exploit Author:...

Authored by Metin Yunus Kandemir ManageEngine ADSelfService Plus version 6.1 suffers from a CSV injection vulnerability. Change Mirror Download # Exploit Title: ManageEngine ADSelfService Plus 6.1 - CSV Injection# Date: 19/05/2021# Exploit...

Authored by malvuln | Site malvuln.com Backdoor.Win32.Psychward.c malware suffers from a code execution vulnerability. Change Mirror Download Discovery / credits: Malvuln - malvuln.com (c) 2021Original source: https://malvuln.com/advisory/f60a8d71a822e0e485f22ada8f26c31e.txtContact: [email protected]: twitter.com/malvulnThreat: Backdoor.Win32.Psychward.cVulnerability: Unauthenticated Remote...