exploit the possibilities

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 15 of 15

Files Date: 2017-05-25

WebKit Editor::Command::execute Universal Cross Site Scripting

Posted May 25, 2017

Authored by Google Security Research, lokihardt

WebKit suffers from a universal cross site scripting vulnerability via Editor::Command::execute.

tags | exploit, xss

advisories | CVE-2017-2504

SHA-256 | b403bbb69d0b3e963bb638919bb8560364e34988c717b45ebc3717df3f1fae75

Download | Favorite | View

WebKit enqueuePageshowEvent / enqueuePopstateEvent Universal XSS

Posted May 25, 2017

Authored by Google Security Research, lokihardt

WebKit enqueuePageshowEvent and enqueuePopstateEvent suffer from a universal cross site scripting vulnerability.

tags | exploit, xss

advisories | CVE-2017-2510

SHA-256 | af070e1fb01da40b85a05e4da984fc2dfe9f6be669db41ba609b0417423c3c48

Download | Favorite | View

Mozilla Firefox ConvolvePixel Memory Disclosure

Posted May 25, 2017

Authored by Ivan Fratric, Google Security Research

Mozilla Firefox suffers from a memory disclosure vulnerability in ConvolvPixel. o.

tags | exploit

advisories | CVE-2017-5465

SHA-256 | 27c3bf47249dbc1cd71b07f2da059c87632637f14473ab6fde848168f7d09b8c

Download | Favorite | View

WebKit FrameLoader::clear Variable Theft

Posted May 25, 2017

Authored by Google Security Research, lokihardt

WebKit suffers from a variable theft issue in FrameLoader::clear via page navigation.

tags | exploit

advisories | CVE-2017-2515

SHA-256 | b2f1425e0cc7f6da7a5294cfe11ef3cbea388ebea94dcf08b5676216e6615267

Download | Favorite | View

Microsoft MsMpEng Privilege Escalation

Posted May 25, 2017

Authored by Tavis Ormandy, Google Security Research

Microsoft MsMpEng suffers from multiple privilege escalation vulnerabilities.

tags | exploit, vulnerability

SHA-256 | b57fb4337aa82768637ff7b8efdf2fef6727f821ca5bfd34a0c7ad06e2c615e7

Download | Favorite | View

WebKit HTMLObjectElement::updateWidget Universal XSS

Posted May 25, 2017

Authored by Google Security Research, lokihardt

WebKit suffers from a cross site scripting vulnerability in HTMLObjectElement::updateWidget.

tags | exploit, xss

advisories | CVE-2017-2493

SHA-256 | 5e1a9a4c59df034aade4206f4dcb044b4ce264d6f3524ad57ed2b3849dbbf858

Download | Favorite | View

WebKit WebCore::FrameView::scheduleRelayout Use-After-Free

Posted May 25, 2017

Authored by Google Security Research, lokihardt

WebKit suffers from a use-after-free vulnerability in WebCore::FrameView::scheduleRelayout.

tags | exploit

advisories | CVE-2017-2514

SHA-256 | 2d5a02001638af79822a62eb31b6aeafa5e4f683b79a12b2a326a9028975b890

Download | Favorite | View

Mozilla Firefox gfxTextRun Out-Of-Bounds Read

Posted May 25, 2017

Authored by Ivan Fratric, Google Security Research

gfxTextRun in Mozilla Firefox suffers from a heap overflow vulnerability.

tags | exploit, overflow

advisories | CVE-2017-5447

SHA-256 | ca7dc76b101bf1ce0d07c158ddb9d23bd3cc4262052161ffea414b47ab83a329

Download | Favorite | View

Skia Graphics Library Heap Overflow

Posted May 25, 2017

Authored by Ivan Fratric, Google Security Research

Skia Graphic Library suffers from a heap overflow vulnerability.

tags | exploit, overflow

SHA-256 | a91b4dffb9db505d11d1a2211a841657e91151b846608640c0c1fc28cfbd150b

Download | Favorite | View

WebKit JSC BindingNode::bindValue Failed Reference Count Increase

Posted May 25, 2017

Authored by Google Security Research, lokihardt

WebKit JSC fails to increase the reference count in BindingNode::bindValue.

tags | exploit

advisories | CVE-2017-2505

SHA-256 | 6f55d86c5f6b50d0002bcd10d39bf19ba832cfb70f168f4c10bd7447be36f502

Download | Favorite | View

WebKit ContainerNode::parserInsertBefore Universal Cross Site Scripting

Posted May 25, 2017

Authored by Google Security Research, lokihardt

Webkit suffers from a universal cross site scripting vulnerability in ContainerNode::parserInsertBefore.

tags | advisory, xss

advisories | CVE-2017-2508

SHA-256 | 2910111011bab087a7dddb9b858fbb38df3d69348db88c83b899c0aa418a0097

Download | Favorite | View

WebKit ContainerNode::parserRemoveChild (2) Universal Cross Site Scripting

Posted May 25, 2017

Authored by Google Security Research, lokihardt

WebKit suffers from a universal cross site scripting vulnerability via ContainerNode::parserRemoveChild (2).

tags | exploit, xss

SHA-256 | 964166bf7e2aad87ca87f9fbd636f508b2feacc79ea9718481f8a478a086c262

Download | Favorite | View

WebKit Patch #1110 Universal Cross Site Scripting

Posted May 25, 2017

Authored by Google Security Research, lokihardt

The WebKit #1110 patch created a universal cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | f9fa2419890bbf932fea7ee2144168cc1b45cb651c941ddb77002892c3f97bb8

Download | Favorite | View

Introduction To Manual Backdooring

Posted May 25, 2017

Authored by abatchy17

Whitepaper called Introduction to Manual Backdooring.

tags | paper

SHA-256 | f9ba61ede94c908a9de884c8e67b558cd816dfc3d9ba4dae15e3f5ecd501eade

Download | Favorite | View

Samba 3.5.0 Remote Code Execution

Posted May 25, 2017

Authored by steelo

Samba version 3.5.0 remote code execution exploit. Written in python.

tags | exploit, remote, code execution, python

advisories | CVE-2017-7494

SHA-256 | 82b78ac677f3c508a31ba7663a45618d965a4a0c22eb9bc613387514f11039b3

Download | Favorite | View