This Metasploit module exploits a command execution vulnerability in AROX School-ERP. “import_stud.php” and “upload_fille.php” do not have session control. Session start/check functions in Line 8,9,10 are disabled with slashes. Therefore…
>> ARCHIVE: 2019-06
Netperf version 2.6.0 suffers from a stack-based buffer overflow.
Exim versions 4.87 through 4.91 suffer from a local privilege escalation vulnerability.
Serv-U FTP Server < 15.1.7 – Local Privilege Escalation
Linux/x86_64 – execve(/bin/sh) Shellcode (22 bytes)
Sahi pro 8.x – Cross-Site Scripting
Sahi pro 8.x – SQL Injection
Sahi pro 7.x/8.x – Directory Traversal
Exim 4.87 – 4.91 – Local Privilege Escalation
HC10 HC.Server Service 10.14 – Remote Invalid Pointer Write