This Metasploit module exploits a stack buffer overflow in Advantech WebAccess version 8.2. By sending a specially crafted DCERPC request, an attacker could overflow the buffer and execute arbitrary code.
>> ARCHIVE: 2017-12
This Metasploit module exploits a stack buffer overflow in Dup Scout Enterprise version 10.0.18. The buffer overflow exists via the web interface during login. This gives NT AUTHORITYSYSTEM access.
pfSense 2.4.1 – CSRF Error Page Clickjacking (Metasploit)
Dup Scout Enterprise – Login Buffer Overflow (Metasploit)
Readymade Video Sharing Script 3.2 – HTML Injection
Piwigo 2.9.1 – ‘cat_true’ / ‘cat_false’ SQL Injection
Paid To Read Script 2.0.5 – ‘uid’ / ‘fnum’ / ‘fn’ SQL Injection
Bus Booking Script 1.0 – ‘txtname’ SQL Injection
FS Lynda Clone 1.0 – SQL Injection
Multireligion Responsive Matrimonial version 4.7.2 suffers from a remote SQL injection vulnerability.