Exploits & CVE's

Authored by 3ndG4me Adtran Personal Phone Manager version 10.8.1 suffers from a DNS exfiltration vulnerability. advisories | CVE-2021-25681 Change Mirror Download # Exploit Title: Adtran Personal Phone Manager 10.8.1 - DNS Exfiltration# Date:...

Authored by h00die, Nikita Petrov | Site metasploit.com This Metasploit module exploits two NoSQL injection vulnerabilities to retrieve the user list and password reset tokens from the system. Next, the...

Authored by Chris Lyne, Erik Wynter | Site metasploit.com This Metasploit module exploits an OS command injection vulnerability in includes/components/nxti/index.php that enables an authenticated user with admin privileges to achieve...

Authored by malvuln | Site malvuln.com Trojan-Dropper.Win32.Agent.bjtzcp malware suffers from an insecure permissions vulnerability. Change Mirror Download Discovery / credits: Malvuln - malvuln.com (c) 2021Original source: https://malvuln.com/advisory/2992b86d03c3922ed45fa09ef105f018.txtContact: [email protected]: twitter.com/malvulnThreat: Trojan-Dropper.Win32.Agent.bjtzcpVulnerability: Insecure PermissionsDescription:...

Authored by malvuln | Site malvuln.com Trojan.Win32.Bayrob.dtrg malware suffers from an insecure permissions vulnerability. Change Mirror Download Discovery / credits: Malvuln - malvuln.com (c) 2021Original source: https://malvuln.com/advisory/2f3f0e9be7edb73e545fc49b5a78b4f0.txtContact: [email protected]: twitter.com/malvulnThreat: Trojan.Win32.Bayrob.dtrgVulnerability: Insecure Permissions...

Authored by ThuraMoeMyint WordPress Photo Gallery plugin versions 1.5.69 and below suffer from multiple reflective cross site scripting vulnerabilities. Change Mirror Download Researcher Name: ThuraMoeMyintTwitter: https://twitter.com/mgthuramoemyintVendor Url: https://wordpress.org/plugins/photo-gallery/"Photo Gallery by 10Web /...

Authored by Tavis Ormandy, Google Security Research xscreensaver suffers from a raw socket leak vulnerability. Proof of concept exploit demonstrates running tcpdump via this issue.

Authored by malvuln | Site malvuln.com Trojan.Win32.Agent.hsm malware suffers from an insecure permissions vulnerability. Change Mirror Download Discovery / credits: Malvuln - malvuln.com (c) 2021Original source: https://malvuln.com/advisory/c58d5aecd223ac95ae5fab6dcd69e953.txtContact: [email protected]: twitter.com/malvulnThreat: Trojan.Win32.Agent.hsmVulnerability: Insecure Permissions...

Authored by T Shiomitsu | Site iot-inspector.com Cisco RV-series routers suffer from an authentication bypass vulnerability. The RV34X series are also affected by a command injection vulnerability in the sessionid...

Authored by Richard Jones Phone Shop Sales Management System version 1.0 suffers from a remote shell upload vulnerability. Change Mirror Download # Exploit Title: Phone Shop Sales Management System - Arbitrary File...