This Metasploit module exploits three separate vulnerabilities found in the Riverbed SteelCentral NetProfiler/NetExpress virtual appliances to obtain remote command execution as the root user. A SQL injection in the login form can be exploited to add a malicious user into the application’s database. An attacker can then exploit a command injection vulnerability in the web […]
Beauty Parlour and SPA Saloon Management System suffers from an unauthenticated blind remote SQL injection vulnerability.
Clinic Management System suffers from an unauthenticated remote blind SQL injection vulnerability.
WordPress WP Job Manager plugin version 1.25 suffers from a remote shell upload vulnerability.
Apache Archiva version 1.3.9 suffers from a cross site request forgery vulnerability.
Apache Archiva version 1.3.9 suffers from a cross site scripting vulnerability.
Riverbed SteelCentral NetProfiler/NetExpress Remote Code Execution
Tags:
0day,
remote exploit
Adobe Flash Player 22.0.0.192 – DefineSprite Memory Corruption
Tags:
0day,
remote exploit
Apache Archiva 1.3.9 – Multiple CSRF Vulnerabilities
Tags:
0day,
remote exploit
Linux x86 Reverse Shell using Xterm ///usr/bin/xterm -display 127.1.1.1:10
Tags:
0day,
remote exploit