2019
05.17

SEL AcSELerator Architect version 2.2.24 suffers from a CPU exhaustion denial of service vulnerability.

more details here.

2019
05.17

This Metasploit module exploits a remote code execution vulnerability found in GetSimpleCMS versions 3.3.15 and below. An arbitrary file upload (PHPcode for example) vulnerability can be triggered by an authenticated user, however authentication can be bypassed by leaking the cms API key to target the session manager.

more details here.

2019
05.17

Interspire Email MarketerĀ 6.20 – ‘surveys_submit.php’ Remote Code Execution

more details here.

2019
05.17

CEWE Photo Importer 6.4.3 – ‘.jpg’ Denial of Service (PoC)

more details here.

2019
05.17

CEWE Photoshow 6.4.3 – ‘Password’ Denial of Service (PoC)

more details here.

2019
05.17

Iperius Backup 6.1.0 – Privilege Escalation

more details here.

2019
05.17

Sandboxie 5.30 – ‘Programs Alerts’ Denial of Service (PoC)

more details here.

2019
05.16

Tomabo MP4 Converter version 3.25.22 denial of service proof of concept exploit.

more details here.

2019
05.16

CommSy 8.6.5 SQL Injection

CommSy version 8.6.5 suffers from a remote SQL injection vulnerability.

more details here.

2019
05.16

DeepSound 1.0.4 SQL Injection

DeepSound version 1.0.4 suffers from a remote SQL injection vulnerability.

more details here.