Category: remote code execution

FortiOS 5.6.3 – 5.6.7 / FortiOS 6.0.0 – 6.0.4
remote code execution

FortiOS 5.6.3 – 5.6.7 / FortiOS 6.0.0 – 6.0.4

- Exploit Details # Exploit Title: FortiOS Leak file - Reading login/passwords in clear text. # Google Dork: intext:"Please Login" inurl:"/remote/login" # Date: 17/08/2019 # ... Read More

YouPHPTube 7.2 – ‘userCreate.json.php’ SQL Injection
remote code execution

YouPHPTube 7.2 – ‘userCreate.json.php’ SQL Injection

- Exploit Details # Exploit Title: YouPHPTube < 7.3 SQL Injection # Google Dork: / # Date: 19.08.2019 # Exploit Author: Fabian Mosch, r-tec IT ... Read More

GetGo Download Manager 6.2.2.3300 – Denial of Service
remote code execution

GetGo Download Manager 6.2.2.3300 – Denial of Service

- Exploit Details # Exploit Title : GetGo Download Manager 6.2.2.3300 - Denial of Service # Date: 2019-08-15 # Author - Malav Vyas # Vulnerable ... Read More

Serious flaws in six printer brands discovered, fixed
Brother, cross-site scripting

Serious flaws in six printer brands discovered, fixed

There are many ways to compromise company data, but IT teams often overlook one of the most serious: the humble printer. . Serious flaws in ... Read More

Microsoft Font Subsetting – DLL Heap-Based Out-of-Bounds read in WriteTableFromStructure
remote code execution

Microsoft Font Subsetting – DLL Heap-Based Out-of-Bounds read in WriteTableFromStructure

- Exploit Details -----==========----- The Microsoft Font Subsetting DLL (fontsub.dll) is a default Windows helper library for subsetting TTF fonts; i.e. converting fonts to their ... Read More

Microsoft Windows Text Services Framework MSCTF
remote code execution

Microsoft Windows Text Services Framework MSCTF

- Exploit Details The msctf subsystem is part of the Text Services Framework, The TSF manages things like input methods, keyboard layouts, text processing and ... Read More

Microsoft Font Subsetting – DLL Heap Corruption in ReadAllocFormat12CharGlyphMapList
remote code execution

Microsoft Font Subsetting – DLL Heap Corruption in ReadAllocFormat12CharGlyphMapList

- Exploit Details -----==========----- The Microsoft Font Subsetting DLL (fontsub.dll) is a default Windows helper library for subsetting TTF fonts; i.e. converting fonts to their ... Read More

Microsoft Font Subsetting – DLL Heap Corruption in FixSbitSubTables
remote code execution

Microsoft Font Subsetting – DLL Heap Corruption in FixSbitSubTables

- Exploit Details -----==========----- The Microsoft Font Subsetting DLL (fontsub.dll) is a default Windows helper library for subsetting TTF fonts; i.e. converting fonts to their ... Read More

Windows PowerShell – Unsanitized Filename Command Execution
remote code execution

Windows PowerShell – Unsanitized Filename Command Execution

- Exploit Details ''' Credits: John Page (aka hyp3rlinx) Website: hyp3rlinx.altervista.org Source: //hyp3rlinx.altervista.org/advisories/MICROSOFT-WINDOWS-POWERSHELL-UNSANITIZED-FILENAME-COMMAND-EXECUTION.txt ISR: Apparition Security www.microsoft.com Windows PowerShell Windows PowerShell is a Windows command-line ... Read More