OpenBSD net-snmp suffers from a credential and information disclosure vulnerability.
>> ARCHIVE: 2015-11
b374k web shell versions 2.8 and 3.2.3 suffer from a cross site request forgery vulnerability that allows for remote command injection.
Tails versions 1.6 and below suffers from an information leak vulnerability via a symlink attack.
This Metasploit module exploits a PHP object injection vulnerability in vBulletin 5.1.2 to 5.1.9
This Metasploit module exploits a vulnerability found in Uptime version 7.4.0 and 7.5.0. The vulnerability began as a classic arbitrary file upload vulnerability in post2file.php, which can be exploited by…
This Metasploit module exploits an arbitrary file upload vulnerability found within the Up.Time monitoring server 7.2 and below. A malicious entity can upload a PHP file into the webroot without…
b374k Web Shell – CSRF Command Injection
Multiple Checkpoint.com subdomains suffered from cross site scripting vulnerabilities.
The install script for IBM Installation Manager version 1.8.1 suffers from a /tmp race condition.
WordPress WP Fastest Cache plugin version 0.8.4.8 suffers from a remote blind SQL injection vulnerability.