Task Management System 1.0 Shell Upload
Authored by Saeed Bala Ahmed
Task Management System version 1.0 suffers from a remote shell upload vulnerability.
Change Mirror Download
# Exploit Title: Task Management System 1.0 - Unrestricted File Upload to...
Task Management System 1.0 Cross Site Scripting
Authored by Saeed Bala Ahmed
Task Management System version 1.0 suffers from a persistent cross site scripting vulnerability.
Change Mirror Download
# Exploit Title: Task Management System 1.0 - 'First Name and...
Tibco ObfuscationEngine 5.11 Fixed Key Password Decryption
Authored by Tess Sluijter
Tibco ObfuscationEngine version 5.11 uses a fixed key for decryption operations, making it pointless.
Change Mirror Download
# Exploit Title: Tibco ObfuscationEngine 5.11 - Fixed Key Password Decryption#...
Microsoft Windows Cloud Filter Arbitrary File Creation / Privilege Escalation
Authored by James Forshaw, Google Security Research
The Microsoft Windows Cloud Filter driver can be abused to create arbitrary files and directories leading to elevation of privilege.
advisories | CVE-2020-17136
Microsoft Windows Cloud Filter HsmpAccessCheck Bypass / Privilege Escalation
Authored by James Forshaw, Google Security Research
The Microsoft Windows Cloud Filter access check does not take into account restrictions such as Mandatory Labels allowing a user to bypass security...
Google Duo Race Condition
Authored by Google Security Research, natashenka
A race condition in Google Duo can cause callee to leak video packets from an unanswered call.
Linux io_uring SUID Boundary Access Violation
Authored by Jann Horn, Google Security Research
Linux io_uring suffers from mm and files access across suid binaries.
Facebook Messenger For Android Forced Answer
Authored by Google Security Research, natashenka
Facebook Messenger for Android has an issue where an SdpUpdate message can cause an audio call to connect before the callee has answered the...
Online Bus Booking System Project Using PHP MySQL 1.0 SQL Injection
Authored by Krishna Yadavu
Online Bus Booking System Project using PHP MySQL version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
advisories | CVE-2020-25889
Change Mirror Download
For...
Student Management System Project PHP 1.0 Cross Site Scripting
Authored by Krishna Yadav
Student Management System PHP version 1.0 suffers from a persistent cross site scripting vulnerability.
advisories | CVE-2020-25955
Change Mirror Download
For CVE-2020-25955:# Exploit Title: student management system project PHP...
