Exploit released for critical ManageEngine RCE bug, patch now

Proof-of-concept exploit code is now available for a remote code execution (RCE) vulnerability in multiple Zoho ManageEngine products.

• Sergiu Gatlan
• January 19, 2023
• 12:07 PM
• 0

Researchers to release PoC exploit for critical ManageEngine RCE bug, patch now

Proof-of-concept exploit code will be released later this week for a critical vulnerability allowing remote code execution (RCE) without authentication in several Zoho ManageEngine products.

• Sergiu Gatlan
• January 16, 2023
• 06:10 PM
• 3

New Webinar: Choose Your Own Investigation — Browser Attack Edition

Modern attacks have shifted focus to the browser, yet detection tools remain largely blind to the crucial activity happening there.

Join Push Security on February 11th for an interactive "choose-your-own-adventure" webinar on ClickFix, credential phishing, and other in-browser attacks we've observed in the wild.

• Push Security Sponsorship

PoC exploits released for critical bugs in popular WordPress plugins

Three popular WordPress plugins with tens of thousands of active installations are vulnerable to high-severity or critical SQL injection vulnerabilities, with proof-of-concept exploits now publicly available.

• Bill Toulas
• January 13, 2023
• 04:28 PM
• 0

Exploit released for actively abused ProxyNotShell Exchange bug

Proof-of-concept exploit code has been released online for two actively exploited and high-severity vulnerabilities in Microsoft Exchange, collectively known as ProxyNotShell.

• Sergiu Gatlan
• November 18, 2022
• 03:53 PM
• 0

Exploit released for critical VMware RCE vulnerability, patch now

Proof-of-concept exploit code is now available for a pre-authentication remote code execution (RCE) vulnerability allowing attackers to execute arbitrary code remotely with root privileges on unpatched Cloud Foundation and NSX Manager appliances.

• Sergiu Gatlan
• October 28, 2022
• 11:34 AM
• 1

Fake Microsoft Exchange ProxyNotShell exploits for sale on GitHub

Scammers are impersonating security researchers to sell fake proof-of-concept ProxyNotShell exploits for newly discovered Microsoft Exchange zero-day vulnerabilities.

• Lawrence Abrams
• October 03, 2022
• 05:47 PM
• 0

VMware warns of public exploit for critical auth bypass vulnerability

Proof-of-concept exploit code is now publicly available online for a critical authentication bypass security flaw in multiple VMware products that enables attackers to gain admin privileges.

• Sergiu Gatlan
• August 09, 2022
• 12:15 PM
• 0

Zoho ManageEngine ADAudit Plus bug gets public RCE exploit

Security researchers have published technical details and proof-of-concept exploit code for CVE-2022-28219, a critical vulnerability in the Zoho ManageEngine ADAudit Plus tool for monitoring activities in the Active Directory.

• Ionut Ilascu
• July 01, 2022
• 03:45 PM
• 0

Exploit released for Atlassian Confluence RCE bug, patch now

Proof-of-concept exploits for the actively exploited critical CVE-2022-26134 vulnerability impacting Atlassian Confluence and Data Center servers have been widely released this weekend.

• Lawrence Abrams
• June 05, 2022
• 12:41 PM
• 0

Exploit released for critical VMware auth bypass bug, patch now

Proof-of-concept exploit code is now available online for a critical authentication bypass vulnerability in multiple VMware products that allows attackers to gain admin privileges.

• Sergiu Gatlan
• May 26, 2022
• 02:21 PM
• 0

Hackers exploit critical VMware CVE-2022-22954 bug, patch now

Security researchers have published various proof of concepts (PoCs) scripts for exploiting CVE-2022-22954 on social media and other channels, essentially enabling malicious actors to attack unpatched systems.

• Bill Toulas
• April 13, 2022
• 02:32 PM
• 0

New Linux bug gives root on all major distros, exploit released

A new Linux vulnerability known as 'Dirty Pipe' allows local users to gain root privileges through publicly available exploits.

• Lawrence Abrams
• March 07, 2022
• 04:22 PM
• 2

Hackers exploiting critical VMware vCenter CVE-2021-22005 bug

Exploit code that could be used for remote code execution on VMware vCenter Server vulnerable to CVE-2021-22005 has been released today and attackers are already using it.

• Ionut Ilascu
• September 24, 2021
• 02:04 PM
• 0

Researcher drops three iOS zero-days that Apple refused to fix

Proof-of-concept exploit code for three iOS zero-day vulnerabilities (and a fourth one patched in July) was published on GitHub after Apple delayed patching and failed to credit the researcher.

• Sergiu Gatlan
• September 24, 2021
• 07:13 AM
• 3

Attackers are scanning for vulnerable VMware servers, patch now!

Threat actors are actively scanning for Internet-exposed VMware vCenter servers unpatched against a critical remote code execution (RCE) vulnerability impacting all vCenter deployments and patched by VMware ten days ago.

• Sergiu Gatlan
• June 04, 2021
• 02:23 PM
• 0

Exploit released for wormable Windows HTTP vulnerability

Proof-of-concept exploit code has been released over the weekend for a critical wormable vulnerability in the latest Windows 10 and Windows Server versions.

• Sergiu Gatlan
• May 17, 2021
• 10:46 AM
• 0

PoC exploit released for Microsoft Exchange bug discovered by NSA

Technical documentation and proof-of-concept exploit (PoC) code has been released for a high-severity vulnerability in Microsoft Exchange Server that could let remote attackers execute code on unpatched machines.

• Ionut Ilascu
• May 03, 2021
• 01:24 PM
• 0

New PoC for Microsoft Exchange bugs puts attacks in reach of anyone

A security researcher has released a new proof-of-concept exploit this weekend that requires slight modification to install web shells on Microsoft Exchange servers vulnerable to the actively exploited ProxyLogon vulnerabilities.

• Lawrence Abrams
• March 14, 2021
• 03:42 PM
• 0