VeryFitPro 3.2.8 Insecure Transit
Authored by Nick Decker | Site trovent.io
VeryFitPro version 3.2.8 sends unencrypted cleartext transmission of sensitive information.
Change Mirror Download
# Trovent Security Advisory 2105-01 ######################################Unencrypted cleartext transmission of sensitive information###########################################################Overview########Advisory ID:...
Samsung NPU npu_session_format Out-Of-Bounds Write
Authored by Google Security Research, hawkes
Samsung NPU (Neural Processing Unit) suffers from an out-of-bounds write vulnerability in npu_session_format.
advisories | CVE-2021-25407
Unified Office Total Connect Now 1.0 SQL Injection
Authored by Ajaikumar Nadar
Unified Office Total Connect Now version 1.0 suffers from a remote SQL injection vulnerability.
Change Mirror Download
# Exploit Title: Unified Office Total Connect Now 1.0 – 'data'...
Trojan.Win32.Alien.erf Buffer Overflow
Authored by malvuln | Site malvuln.com
Trojan.Win32.Alien.erf malware suffers from a buffer overflow vulnerability.
Change Mirror Download
Discovery / credits: Malvuln - malvuln.com (c) 2021Original source: https://malvuln.com/advisory/57ab194d8c60ee97914eda22e4d71b68_B.txtContact: [email protected]: twitter.com/malvulnThreat: Trojan.Win32.Alien.erfVulnerability: Remote Stack...
Dup Scout 13.5.28 Unquoted Service Path
Authored by Brian Rodriguez
Dup Scout version 13.5.28 suffers from an unquoted service path vulnerability.
Change Mirror Download
# Exploit Title: Dup Scout 13.5.28 - 'Multiple' Unquoted Service Path# Discovery by: Brian...
Cisco HyperFlex HX Data Platform File Upload / Remote Code Execution
Authored by wvu, Mikhail Klyuchnikov, jheysel-r7, Nikita Abramov | Site metasploit.com
This Metasploit module exploits an unauthenticated file upload vulnerability in Cisco HyperFlex HX Data Platform's /upload endpoint to upload...
Microsoft SharePoint Unsafe Control And ViewState Remote Code Execution
Authored by unknown, Spencer McIntyre, wvu | Site metasploit.com
The EditingPageParser.VerifyControlOnSafeList method fails to properly validate user supplied data. This can be leveraged by an attacker to leak sensitive information...
Windows Kerberos AppContainer Enterprise Authentication Capability Bypass
Authored by James Forshaw, Google Security Research
Kerberos supports a security buffer to set the target SPN of a ticket bypassing the SPN check in LSASS.
advisories | CVE-2021-26414, CVE-2021-31962
Brother BRAgent 1.38 Unquoted Service Path
Authored by Brian Rodriguez
Brother BRAgent version 1.38 suffers from an unquoted service path vulnerability.
Change Mirror Download
# Exploit Title: Brother BRAgent 1.38 - 'WBA_Agent_Client' Unquoted Service Path# Discovery by: Brian...
Online Library Management System 2.0 Cross Site Request Forgery
Authored by Mohit Dabas
Online Library Management System version 2.0 suffers from a cross site request forgery vulnerability.
Change Mirror Download
# Exploit Title: Online Library Management System# Date:15/06/2021# Exploit Author :...
