Menu

Monthly Archives: July 2018

Unauthenticated Code Execution on EDU websites
An Unauthenticated Shell Upload Vulnerability has been found on the vendor NextBarisal major clients are schools and other institution
Flexense SyncBreeze 10.7 Cross Site Scripting
  Flexense SyncBreeze versions 10.1 through 10.7 suffer from a cross site scripting vulnerability.
ipPulse 1.92 IP Address/HostName-Comment Denial of Service (PoC)
ipPulse is a Connectivity and Device Status Monitoring Tool. DOS Exploit !
Linux x86 Reverse Shell Shellcode
  69 bytes small Linux x86 reverse TCP /bin/sh shell null-free shellcode that connects to 127.1.1.1:8888.
NetScanTools Basic Edition 2.5 – ‘Hostname’ Denial of Service (PoC)
# Discovery by: Luis Martínez # Discovery Date: 2018-07-26 # Vendor Homepage: https://www.netscantools.com/ # Software Link : [...]
Core FTP 2.0 – ‘XRMD’ Denial of Service (PoC)
# Exploit Title: Core FTP 2.0 - 'XRMD' Denial of Service (PoC) # Date: 2018-07-24 # Exploit Author: Erik David Martin # Vendor Homepage: [...]
Splinterware System Scheduler Pro 5.12 Buffer Overflow (SEH)
Splinterware Software Solutions, the home of the automation tool System Scheduler and journal notes manager iDailyDiary.
Malicious Cyber Activity Targeting ERP Applications
Digital Shadows Ltd. and Onapsis Inc. have released a report describing an increase in the exploitation of vulnerabilities in Enterprise Resource Planning [...]
SocioQuiz v2.0.5 unauthorized administrative access Vulnerability
==================================================================================================================================== | # Title : SocioQuiz [...]
File Upload Restrictions Bypass
  Whitepaper called File Upload Restrictions Bypass.