Security Vulnerabilities & Exploits

[local] TP-Link VN020 F3v(T) TT_V6.2.1021) - DHCP Stack Buffer Overflow

The Exploit Database - 13 Květen, 2025 - 02:00
TP-Link VN020 F3v(T) TT_V6.2.1021) - DHCP Stack Buffer Overflow

[webapps] WordPress Frontend Login and Registration Blocks Plugin 1.0.7 - Privilege Escalation

The Exploit Database - 13 Květen, 2025 - 02:00
WordPress Frontend Login and Registration Blocks Plugin 1.0.7 - Privilege Escalation

[webapps] Kentico Xperience 13.0.178 - Cross Site Scripting (XSS)

The Exploit Database - 13 Květen, 2025 - 02:00
Kentico Xperience 13.0.178 - Cross Site Scripting (XSS)

[local] RDPGuard 9.9.9 - Privilege Escalation

The Exploit Database - 13 Květen, 2025 - 02:00
RDPGuard 9.9.9 - Privilege Escalation

[remote] Apache ActiveMQ 6.1.6 - Denial of Service (DOS)

The Exploit Database - 9 Květen, 2025 - 02:00
Apache ActiveMQ 6.1.6 - Denial of Service (DOS)

[local] VirtualBox 7.0.16 - Privilege Escalation

The Exploit Database - 9 Květen, 2025 - 02:00
VirtualBox 7.0.16 - Privilege Escalation

[webapps] SureTriggers OttoKit Plugin 1.0.82 - Privilege Escalation

The Exploit Database - 9 Květen, 2025 - 02:00
SureTriggers OttoKit Plugin 1.0.82 - Privilege Escalation

[webapps] WordPress Depicter Plugin 3.6.1 - SQL Injection

The Exploit Database - 9 Květen, 2025 - 02:00
WordPress Depicter Plugin 3.6.1 - SQL Injection

[local] Microsoft Windows 11 Pro 23H2 - Ancillary Function Driver for WinSock Privilege Escalation

The Exploit Database - 9 Květen, 2025 - 02:00
Microsoft Windows 11 Pro 23H2 - Ancillary Function Driver for WinSock Privilege Escalation

[webapps] ERPNext 14.82.1 - Account Takeover via Cross-Site Request Forgery (CSRF)

The Exploit Database - 6 Květen, 2025 - 02:00
ERPNext 14.82.1 - Account Takeover via Cross-Site Request Forgery (CSRF)

[webapps] Grokability Snipe-IT 8.0.4 - Insecure Direct Object Reference (IDOR)

The Exploit Database - 6 Květen, 2025 - 02:00
Grokability Snipe-IT 8.0.4 - Insecure Direct Object Reference (IDOR)

[webapps] Casdoor 1.901.0 - Cross-Site Request Forgery (CSRF)

The Exploit Database - 6 Květen, 2025 - 02:00
Casdoor 1.901.0 - Cross-Site Request Forgery (CSRF)

[local] Microsoft - NTLM Hash Disclosure Spoofing (library-ms)

The Exploit Database - 1 Květen, 2025 - 02:00
Microsoft - NTLM Hash Disclosure Spoofing (library-ms)

[local] ZTE ZXV10 H201L - RCE via authentication bypass

The Exploit Database - 1 Květen, 2025 - 02:00
ZTE ZXV10 H201L - RCE via authentication bypass

[local] Daikin Security Gateway 14 - Remote Password Reset

The Exploit Database - 1 Květen, 2025 - 02:00
Daikin Security Gateway 14 - Remote Password Reset

[local] Microsoft Windows - XRM-MS File NTLM Information Disclosure Spoofing

The Exploit Database - 1 Květen, 2025 - 02:00
Microsoft Windows - XRM-MS File NTLM Information Disclosure Spoofing

[local] unzip-stream 0.3.1 - Arbitrary File Write

The Exploit Database - 30 Duben, 2025 - 02:00
unzip-stream 0.3.1 - Arbitrary File Write

[local] Microsoft Windows 11 - Kernel Privilege Escalation

The Exploit Database - 22 Duben, 2025 - 02:00
Microsoft Windows 11 - Kernel Privilege Escalation

[webapps] WordPress Core 6.2 - Directory Traversal

The Exploit Database - 22 Duben, 2025 - 02:00
WordPress Core 6.2 - Directory Traversal

[remote] Firefox ESR 115.11 - PDF.js Arbitrary JavaScript execution

The Exploit Database - 22 Duben, 2025 - 02:00
Firefox ESR 115.11 - PDF.js Arbitrary JavaScript execution
Syndikovat obsah