Telesquare SDT-CW3B1 1.1.0 Command Injection
Authored by Bryan Leong
Telesquare SDT-CW3B1 version 1.1.0 suffers from a command injection vulnerability.
advisories | CVE-2021-46422
Change Mirror Download
#!/usr/bin/python3 # Exploit Title: Telesquare SDT-CW3B1 1.1.0 - OS Command Injection# Date: 24th...
Real Player 16.00.282 / 16.0.3.51 / Cloud 17.0.9.17 / 20.0.7.309 Remote Code Execution
Authored by Eduardo Braun Prado | Site github.com
Real Player versions 16.00.282, 16.0.3.51, Cloud 17.0.9.17, and 20.0.7.309 suffer from external::Import() arbitrary file download and directory traversal vulnerabilities that lead to...
Real Player 16.0.3.51 / Cloud 17.0.9.17 / 20.0.7.309 DCP URI Remote Code Execution
Authored by Eduardo Braun Prado | Site github.com
Real Player versions 16.0.3.51, Cloud 17.0.9.17, and 20.0.7.309 suffer from a DCP:// URI remote code execution vulnerability.
Avantune Genialcloud ProJ 10 Cross Site Scripting
Authored by Andrea Intilangelo
Avantune Genialcloud ProJ version 10 suffers from a cross site scripting vulnerability.
advisories | CVE-2022-29296
Change Mirror Download
# Exploit Title: Avantune Genialcloud ProJ 10 - Reflected XSS (Cross-Site...
OpenSSL 1.0.2 / 1.1.1 / 3.0 BN_mod_sqrt() Infinite Loop
Authored by Tavis Ormandy, Google Security Research
The BN_mod_sqrt() function in OpenSSL versions 1.0.2, 1.1.1, and 3.0, which computes a modular square root, contains a bug that can cause it...
libxml2 xmlBufAdd Heap Buffer Overflow
Authored by Google Security Research, Felix Wilhelm
libxml2 is vulnerable to a heap buffer overflow when xmlBufAdd is called on a very large buffer.
advisories | CVE-2022-29824
Change Mirror Download
libxml2: heap-buffer-overflow in...
Packet Storm New Exploits For May, 2022
Authored by Todd J. | Site packetstormsecurity.com
This archive contains all of the 142 exploits added to Packet Storm in May, 2022.
GtkRadiant 1.6.6 Buffer Overflow
Authored by Jeremy Brown
GtkRadiant version 1.6.6 suffers from a buffer overflow vulnerability.
Change Mirror Download
=====Intro=====GtkRadiant is a cross-platform level editor software for idtech game engines such as Quake. It comes...
dotCMS Shell Upload
Authored by jheysel-r7, Hussein Daher, Shubham Shah | Site metasploit.com
When files are uploaded into dotCMS via the content API, but before they become content, dotCMS writes the file down...
Microsoft Office MSDT Follina Proof Of Concept
Authored by JMousqueton | Site github.com
Proof of concept for the remote code execution vulnerability in MSDT known as Follina.
advisories | CVE-2022-30190
Change Mirror Download
# POC CVE-2022-30190 : CVE 0-day MS...





