Exploits & CVE's

Authored by Philip Holbrook Joplin version 1.2.6 suffers from a cross site scripting vulnerability. Change Mirror Download # Exploit Title: Joplin 1.2.6 - 'link' Cross Site Scripting# Date: 2020-09-21# Exploit Author: Philip...

Authored by saelo, Google Security Research Turbofan fails to deoptimize code after map deprecation, leading to a type confusion vulnerability. advisories | CVE-2020-16009 Change Mirror Download V8: Turbofan fails to deoptimize code after...

Authored by Google Security Research, Glazvunov Chrome on Android suffers from a ConvertToJavaBitmap heap buffer overflow vulnerability. advisories | CVE-2020-16011

Authored by Fortunato Lodari Car Rental Management System version 1.0 remote SQL injection and shell upload exploit. Change Mirror Download # Exploit Title: Car Rental Management System 1.0 - SQL injection +...

Authored by Mohammed Alshehri DiskBoss version 11.7.28 suffers from an unquoted service path vulnerability. Change Mirror Download # Exploit Title: DiskBoss v11.7.28 - Multiple Services Unquoted Service Path# Date: 2020-8-20# Exploit Author:...

Authored by Carlos Roa Canon Inkjet Extended Survey Program version 5.1.0.8 suffers from an unquoted service path vulnerability. Change Mirror Download # Exploit Title: Canon Inkjet Extended Survey Program 5.1.0.8 - 'IJPLMSVC.EXE'...

Authored by Hacker Fantastic A trivial to reach stack-based buffer overflow is present in libpam on Solaris. The vulnerable code exists in pam_framework.c parse_user_name() which allocates a fixed size buffer...

Authored by hyp3rlinx | Site hyp3rlinx.altervista.org NtFileSins.py is a Windows file enumeration intel gathering tool. Change Mirror Download from subprocess import Popen, PIPEimport sys,argparse,re#MIT License#Copyright (c) 2020 John Page (aka hyp3rlinx)#Permission is...

Authored by LiquidWorm | Site zeroscience.mk iDS6 DSSPro Digital Signage System version 6.2 allows users to perform certain actions via HTTP requests without performing any validity checks to verify the...

Authored by LiquidWorm | Site zeroscience.mk The CAPTCHA function for iDS6 DSSPro Digital Signage System version 6.2 is prone to a security bypass vulnerability that occurs in the CAPTCHA authentication...