Race Against The Sandbox
Authored by The Abyss Labs | Site theabysslabs.github.io
Whitepaper called Race Against the Sandbox - Root Cause Analysis of a Tianfu Cup bug that used a Ntoskrnl bug to escape...
Inout RealEstate 2.1.2 SQL Injection
Authored by CraCkEr
Inout RealEstate version 2.1.2 suffers from a remote SQL injection vulnerability.
Change Mirror Download
┌┌───────────────────────────────────────────────────────────────────────────────────────┐││ ...
Win32.Ransom.BlueSky MVID-2022-0632 Code Execution
Authored by malvuln | Site malvuln.com
The BlueSky Win32.Ransom.BlueSky ransomware looks for and executes arbitrary DLLs in its current working directory. Therefore, we can hijack a DLL, execute our own...
Gigaland NFT Marketplace 1.9 Shell Upload / Key Disclosure
Authored by Sohel Yousef
Gigaland NFT Marketplace version 1.9 suffers from remote shell upload and ETH private key disclosure vulnerabilities.
Change Mirror Download
# Exploit Title: Gigaland NFT marketplace Shell upload and...
Inout SiteSearch 2.0.1 Cross Site Scripting
Authored by CraCkEr
Inout SiteSearch version 2.0.1 suffers from a cross site scripting vulnerability.
Change Mirror Download
┌┌───────────────────────────────────────────────────────────────────────────────────────┐││ ...
Gas Agency Management 2022 SQL Injection / XSS / Shell Upload
Authored by nu11secur1ty
Gas Agency Management 2022 suffers from cross site scripting, remote SQL injection, and remote shell upload vulnerabilities.
Change Mirror Download
## Title: Gas Agency Management-2022 by Mayuri K -...
Windows sxs!CNodeFactory::XMLParser_Element_doc_assembly_assemblyIdentity Heap Buffer Overflow
Authored by Google Security Research, Glazvunov
A heap buffer overflow issue exists in Windows 11 and earlier versions. A malicious application may be able to execute arbitrary code with SYSTEM...
Windows sxssrv!BaseSrvActivationContextCacheDuplicateUnicodeString Heap Buffer Overflow
Authored by Google Security Research, Glazvunov
A heap buffer overflow issue exists in Windows 11 and earlier versions. A malicious application may be able to execute arbitrary code with SYSTEM...
Fiberhome AN5506-02-B Cross Site Scripting
Authored by Leonardo Goncalves
Fiberhome AN5506-02-B with firmware version RP2521 suffers from a persistent cross site scripting vulnerability.
Change Mirror Download
# Exploit Title: FiberHome - AN5506-02-B - RP2521 - Authenticated Stored...
Readymade Job Portal Script SQL Injection
Authored by CraCkEr
Readymade Job Portal Script suffers from a remote SQL injection vulnerability. The researcher requested version information from the vendor while reporting the vulnerability but the company has...





