PageResponse FB Inboxer Add-on 1.2 – ‘search_field’ SQL Injection
>> ARCHIVE: 2018-08
PageResponse FB Inboxer Add-on 1.2 – ‘search_field’ SQL Injection
SecureSphere 12.0.0.50 – SealMode Shell Escape (Metasploit)
Sun Solaris 11.3 AVS – Local Kernel root Exploit
Universal Media Server 7.1.0 – SSDP Processing XML External Entity Injection
Imperva SecureSphere 11.5 / 12.0 / 13.0 – Privilege Escalation
TI Online Examination System v2 – Arbitrary File Download
Vtiger version 6.3.0 CRM’s administration interface allows for the upload of a company logo. Instead of uploading an image, an attacker may choose to upload a file containing PHP code…
This Metasploit module exploits a vulnerability in SonicWall Global Management System Virtual Appliance versions 8.1 (Build 8110.1197) and below. This virtual appliance can be downloaded from http://www.sonicwall.com/products/sonicwall-gms/ and is used…
This Metasploit module exploits a SQL injection and command injection vulnerability in MicroFocus Secure Messaging Gateway. An unauthenticated user can execute a terminal command under the context of the web…
[Hebrew] Digital Whisper Security Magazine #97