WordPress Core <= 4.7.4 Potential Unauthorized Password Reset (0day)
[CVE-2017-8295]
https://exploitbox.io/vuln/WordPress-Exploit-4-7-Unauth-Password-Reset-0day-CVE-2017-8295.html
Regards,
Dawid Golunski
https://legalhackers.com
https://ExploitBox.io
t: @dawid_golunski
Thanks
Regards,
Dawid Golunski
https://legalhackers.com
https://ExploitBox.io
t: @dawid_golunski
On Wed, Apr 19, 2017 at 2:17 PM, Filippo Cavallarin
wrote:
> Hi Dawid,
> ok great, I added the credits to the advisory.. now let's see what to do
> with the CVEs.
>
> Thanks!
>
PHPMailer < 5.2.20 Remote Code Execution PoC 0day Exploit
(CVE-2016-10045) (Bypass of the CVE-2016-1033 patch)
Discovered by Dawid Golunski (@dawid_golunski)
https://legalhackers.com
Desc:
I discovered that the current PHPMailer versions (< 5.2.20) were still
vulnerable to RCE as it is po
l
https://twitter.com/dawid_golunski
--
Regards,
Dawid Golunski
https://legalhackers.com
t: @dawid_
Vulnerability:
Nagios Core < 4.2.2 Curl Command Injection leading to Remote Code Execution
CVE-2016-9565
Discovered by: Dawid Golunski (@dawid_golunski)
https://legalhackers.com
Severity: High
Nagios Core comes with a PHP/CGI front-end which allows to view status
of the monitored hosts.
T
Vulnerability: GNU Wget < 1.18 Access List Bypass / Race Condition
CVE-2016-7098
Discovered by: Dawid Golunski (@dawid_golunski)
https://legalhackers.com
Severity: Medium
GNU wget in version 1.17 and earlier, when used in mirroring/recursive mode,
is affected by a Race Condition vulnerabil
Vulnerability: Nginx (Debian-based distros) - Root Privilege
Escalation (CVE-2016-1247)
Discovered by: Dawid Golunski (@dawid_golunski)
https://legalhackers.com
Nginx web server packaging on Debian-based distributions such as Debian or
Ubuntu was found to create log directories with insecure
CVE-2016-6664 / (Oracle)CVE-2016-5617
Vulnerability: MySQL / MariaDB / PerconaDB - Root Privilege Escalation
Discovered by:
Dawid Golunski
@dawid_golunski
https://legalhackers.com
MySQL-based databases including MySQL, MariaDB and PerconaDB are affected
by a privilege escalation vulnerability
/Apache-Tomcat-DebPkg-Root-PrivEsc-Exploit.html
--
Regards,
Dawid Golunski
http://legalhackers.com
CVE: CVE-2016-1240
Vulnerability: Tomcat packaging on Debian-based distros - Local Root
Privilege Escalation
Affected packages: Tomcat 6/7/8 deb packages (up to 8.0.36-2)
Systems affected: Debian & Ubuntu & possibly others (using the
affected deb packages)
Discovered by:
Dawid Goluns
Vulnerability: Adobe ColdFusion <= 11 XXE Injection
CVE: CVE-2016-4264
Vendor ID: APSB16-30
Discovered by: Dawid Golunski (http://legalhackers.com)
Adobe ColdFusion in versions 11 and below is vulnerable to XXE
Injection when processing untrusted office documents.
Depending on a
etin-SSRF-Vulnerability-Exploit.txt
--
Regards,
Dawid Golunski
http://legalhackers.com
=
- Release date: April 1st, 2010
- Discovered by: Dawid Golunski
- Severity: High
=
I. VULNERABILITY
-
Zabbix <= 1.8.1 SQL Injection
II. BACKGROUND
-
Zab
=
- Release date: December 4th, 2009
- Discovered by: Dawid Golunski
- Severity: Moderately High
=
I. VULNERABILITY
-
Invision Power Board <= 3.0.4 Local PHP File Inclusion and
14 matches
Mail list logo
