>> ARCHIVE: 2018-02

Joomla! Proclaim component version 9.1.1 suffers from a remote shell upload vulnerability.

Joomla! OS Property Real Estate component version 3.12.7 suffers from a remote SQL injection vulnerability.

Learning and Examination Management System Script version 2.3.1 suffers from a persistent cross site scripting vulnerability.

Alibaba Clone Script version 1.0.2 suffers from a persistent cross site scripting vulnerability.

Groupon Clone Script version 3.0.2 suffers from a persistent cross site scripting vulnerability.

The HTTP server in AsusWRT has a flaw where it allows an unauthenticated client to perform a POST in certain cases. This can be combined with another vulnerability in the…

This Metasploit module exploits a stack-based buffer overflow vulnerability in the CloudMe Sync version 1.10.9 client application. This Metasploit module has been tested successfully on Windows 7 SP1 x86.

This Metasploit module exploits a stack-based buffer overflow vulnerability in Disk Savvy Enterprise version 10.4.18, caused by improper bounds checking of the request sent to the built-in server. This Metasploit…

Yab Quarx versions 2.4.3 and below suffer from multiple cross site scripting vulnerabilities.