-
Content Count
6,583 -
Avg. Content Per Day
2 -
Joined
-
Last visited
-
Days Won
1
4 Followers
-
Exploits Titan FTP Server 2019 Build 3505 Directory Traversal
1337day-Exploits posted a topic in Updated Exploits
Titan FTP Server 2019 build 3505 suffers from a directory traversal vulnerability. View the full article -
Exploits Advanced Bash-Scripting Guide Code Execution
1337day-Exploits posted a topic in Updated Exploits
RedTeam Pentesting discovered that the shell function "getopt_simple", as presented in the "Advanced Bash-Scripting Guide", allows execution of attacker-controlled commands. View the full article -
Exploits WordPress article2pdf 0.24 DoS / File Deletion / Disclosure
1337day-Exploits posted a topic in Updated Exploits
WordPress article2pdf plugin versions 0.24 and above suffer from resource exhaustion, arbitrary file download, and file deletion vulnerabilities. View the full article -
Exploits DASAN H660RM Information Disclosure / Hardcoded Key
1337day-Exploits posted a topic in Updated Exploits
DASAN H660RM allows for unauthenticated ping access, has a hardcoded key for encryption, and logs sensitive information into /tmp. View the full article -
Exploits PCMan FTP Server 2.0 CDUP Remote Buffer Overflow
1337day-Exploits posted a topic in Updated Exploits
PCMan FTP Server version 2.0 CDUP remote buffer overflow exploit. View the full article -
Exploits SPIP CMS 2.x / 3.x Add Administrator / File Upload
1337day-Exploits posted a topic in Updated Exploits
SPIP CMS versions 2.x and 3.x suffer from unauthenticated add administrator and arbitrary file upload vulnerabilities. View the full article -
Zeeways Jobsite CMS suffers from a remote SQL injection vulnerability. View the full article
-
Zeeways Matrimony CMS suffers from a remote SQL injection vulnerability. View the full article
-
Exploits VMware Host VMX Process COM Class Hijack Privilege Escalation
1337day-Exploits posted a topic in Updated Exploits
The VMX process (vmware-vmx.exe) process configures and hosts an instance of VM. As is common with desktop virtualization platforms the VM host usually has privileged access into the OS such as mapping physical memory which represents a security risk. To mitigate this the VMX process is created with an elevated integrity level by the authentication daemon (vmware-authd.exe) which runs at SYSTEM. This prevents a non-administrator user opening the process and abusing its elevated access. Unfortunately the process is created as the desktop user which results in the elevated process sharing resources such as COM registrations with the normal user who can modify the registry to force an arbitrary DLL to be loaded into the VMX process. Affects VMware Workstation Windows version 14.1.5 (on Windows 10). Also tested on VMware Player version 15. View the full article -
Exploits VMware Host VMX Process Impersonation Hijack Privilege Escalation
1337day-Exploits posted a topic in Updated Exploits
The VMX process (vmware-vmx.exe) process configures and hosts an instance of VM. As is common with desktop virtualization platforms the VM host usually has privileged access into the OS such as mapping physical memory which represents a security risk. To mitigate this the VMX process is created with an elevated integrity level by the authentication daemon (vmware-authd.exe) which runs at SYSTEM. This prevents a non-administrator user opening the process and abusing its elevated access. Unfortunately the process is created as the desktop user and follows the common pattern of impersonating the user while calling CreateProcessAsUser. This is an issue as the user has the ability to replace any drive letter for themselves, which allows a non-admin user to hijack the path to the VMX executable, allowing the user to get arbitrary code running as a trusted VMX process. Affects VMware Workstation Windows version 14.1.5 (on Windows 10). Also tested on VMware Player version 15.0.2. View the full article -
Exploits Jettweb PHP Hazir Haber Sitesi Scripti 3 SQL Injection
1337day-Exploits posted a topic in Updated Exploits
Jettweb PHP Hazir Haber Sitesi Scripti version 3 suffers from multiple remote SQL injection vulnerabilities. View the full article -
Exploits Jettweb PHP Hazir Haber Sitesi Scripti 2 SQL Injection
1337day-Exploits posted a topic in Updated Exploits
Jettweb PHP Hazir Haber Sitesi Scripti version 2 suffers from a remote SQL injection vulnerability that allows for authentication bypass. View the full article -
Exploits WordPress Plugins Open Redirection 2019/03/25
1337day-Exploits posted a topic in Updated Exploits
Five WordPress plugins suffer from open redirection vulnerabilities. Affected includes The-CL-Amazon-Thingy plugin version 1.0, Google Document Embedder version 2.5.8, VJ-Slider version 1.0, WPUSW plugin version 1.0, and Angsumans Translator Gold version 2.3. View the full article -
Exploits Jettweb PHP Hazir Haber Sitesi Scripti 1 SQL Injection
1337day-Exploits posted a topic in Updated Exploits
Jettweb PHP Hazir Haber Sitesi Scripti version 1 suffers from multiple remote SQL injection vulnerabilities. View the full article -
Exploits X-NetStat Pro 5.63 Local Buffer Overflow
1337day-Exploits posted a topic in Updated Exploits
X-NetStat Pro version 5.63 local buffer overflow exploit with egghunter. View the full article