WordPress Smart Slider-3 3.5.0.8 Cross Site Scripting
Authored by Hardik Solanki
WordPress Smart Slider-3 plugin version 3.5.0.8 suffers from a persistent cross site scripting vulnerability.
Change Mirror Download
# Exploit Title: WordPress Plugin Smart Slider-3 3.5.0.8 - 'name' Stored...
Backdoor.Win32.Neakse.bit Insecure Permissions
Authored by malvuln | Site malvuln.com
Backdoor.Win32.Neakse.bit malware suffers from an insecure permissions vulnerability.
Change Mirror Download
Discovery / credits: Malvuln - malvuln.com (c) 2021Original source: https://malvuln.com/advisory/20863ba09c31037b1b3220fc6da100e1.txtContact: [email protected]: twitter.com/malvulnThreat: Backdoor.Win32.Neakse.bitVulnerability: Insecure PermissionsDescription:...
Grav CMS 1.7.10 Server-Side Template Injection
Authored by enox
Grav CMS version 1.7.10 suffers from a server-side template injection vulnerability.
advisories | CVE-2021-29440
Change Mirror Download
# Title: Grav CMS 1.7.10 - Server-Side Template Injection (SSTI) (Authenticated)# Author: enox#...
Sticky Notes And Color Widgets 1.4.2 Denial Of Service
Authored by Geovanni Ruiz
Sticky Notes and Color Widgets version 1.4.2 suffers from a denial of service vulnerability.
Change Mirror Download
# Exploit Title: Sticky Notes & Color Widgets 1.4.2 - Denial...
Backdoor.Win32.Wollf.12 Code Execution
Authored by malvuln | Site malvuln.com
Backdoor.Win32.Wollf.12 malware suffers from a code execution vulnerability.
Change Mirror Download
Discovery / credits: Malvuln - malvuln.com (c) 2021Original source: https://malvuln.com/advisory/911e63e28b1d177120cca16eacf3b602.txtContact: [email protected]: twitter.com/malvulnThreat: Backdoor.Win32.Wollf.12Vulnerability: Unauthenticated Remote...
Backdoor.Win32.Androm.df Code Execution
Authored by malvuln | Site malvuln.com
Backdoor.Win32.Androm.df malware suffers from a code execution vulnerability.
Change Mirror Download
Discovery / credits: Malvuln - malvuln.com (c) 2021Original source: https://malvuln.com/advisory/bf60f5b5c901bab08484838447f1b85e.txtContact: [email protected]: twitter.com/malvulnThreat: Backdoor.Win32.Androm.dfVulnerability: Unauthenticated Remote...
QT TIFF Processing Heap Overflow
Authored by Google Security Research, natashenka
There is a heap corruption bug that can occur when QT processes a malformed TIFF image. It happens because the size of the QImageData...
Chrome Legacy ipc::Message Passed Via Shared Memory
Authored by Google Security Research, Mark Brand
Looking at the Mojo implementation of Chrome's legacy IPC, the legacy ipc::Message type is transferred inside a BigBuffer.
advisories | CVE-2021-21198
SuiteCRM Log File Remote Code Execution
Authored by M. Cory Billington | Site metasploit.com
This Metasploit module exploits an input validation error on the log file extension parameter. It does not properly validate upper/lower case characters....
Cisco HyperFlex HX Data Platform Command Execution
Authored by wvu, Mikhail Klyuchnikov, Nikita Abramov | Site metasploit.com
This Metasploit module exploits an unauthenticated command injection in Cisco HyperFlex HX Data Platform's /storfs-asup endpoint to execute shell commands...
