Electricks eCommerce version 1.0 suffers from a persistent cross site scripting vulnerability.
>> ARCHIVE: 2018-11
DoceboLMS version 1.2 suffers from remote shell upload and remote SQL injection vulnerabilities.
Precurio Intranet Portal version 2.0 suffers from a cross site request forgery vulnerability.
BitZoom version 1.0 suffers from a remote SQL injection vulnerability.
This Metasploit module exploits CVE-2018-17456, which affects Git versions 2.14.5, 2.15.3, 2.16.5, 2.17.2, 2.18.1, and 2.19.1 and lower. When a submodule url which starts with a dash e.g “-u./payload” is…
BiP Messenger suffers from a denial of service vulnerability.
Net-Billetterie version 2.9 suffers from a remote SQL injection vulnerability.
Galaxy Forces MMORPG version 0.5.8 suffers from a remote SQL injection vulnerability.
EverSync version 0.5 suffers from an arbitrary file download vulnerability.
Meneame English Pligg version 5.8 suffers from a remote SQL injection vulnerability.