PRINT
PRINT
SEND MAIL
SEND MAIL
EXPLOIT-COLLECTOR

WordPress All In One Favicon 4.6 Cross Site Scripting

WordPress All In One Favicon plugin version 4.6 suffers from a cross site scripting vulnerability.

AccuracyAltitudeGeolocationLatitudeLongitudeNEW TOOLSPHPSeekerSystem Information

Seeker – Find GeoLocation With High Accuracy

Seeker utilizes HTML5, Javascript, JQuery and PHP to grab Device Information and GeoLocation with High Accuracy.Other tools and services offer IP Geolocation which is not very accurate and does not give location of user. Generally if a user accepts location permsission, Accuracy of the information recieved is accurate to approximately 30 meters. Note : On iPhone due to some reason location accuracy is approximately 65 meters.It Hosts a fake website on Apache Server and uses Ngrok to generate a SSL link which asks for…

EXPLOIT-COLLECTOR

Linux BPF Sign Extension Local Privilege Escalation

Linux kernel versions prior to 4.14.8 utilize the Berkeley Packet Filter (BPF) which contains a vulnerability where it may improperly perform signing for an extension. This can be utilized to escalate privileges. The target system must be compiled with BPF support and must not have kernel.unprivileged_bpf_disabled set to 1. This Metasploit module has been tested successfully on many different kernels.