IceWarp versions 10.4.4 and below suffer from a local file inclusion vulnerability.
>> ARCHIVE: 2019-06
Zoho ManageEngine ServiceDesk Plus version 9.3 suffers from multiple cross site scripting vulnerabilities.
Google Chrome suffers from a use-after-free vulnerability in WasmMemoryObject::Grow.
This Metasploit module exploits a command injection vulnerability in the open source network management software known as LibreNMS. The community parameter used in a POST request to the addhost functionality…
This Metasploit module exploits untrusted serialized data processed by the WAS DMGR Server and Cells in the IBM Websphere Application Server. NOTE: There is a required 2 minute timeout between…
Exim 4.87 < 4.91 – (Local / Remote) Command Execution
Google Chrome 73.0.3683.103 – ‘WasmMemoryObject::Grow’ Use-After-Free
Zimbra < 8.8.11 – XML External Entity Injection / Server-Side Request Forgery
LibreNMS – addhost Command Injection (Metasploit)
IBM Websphere Application Server – Network Deployment Untrusted Data Deserialization Remote Code Execution (Metasploit)