REDDOXX Appliance versions 2032-SP2 up to hotfix 51 suffer from an information disclosure vulnerability.
>> ARCHIVE: 2019-07
FaceSentry Access Control System version 6.4.8 credentials used for accessing the web front end are stored unencrypted on the device in /faceGuard/database/FaceSentryWeb.sqlite.
This archive contains all of the 110 exploits added to Packet Storm in June, 2019.
Centreon 19.04 – Remote Code Execution
Mac OS X TimeMachine – ‘tmdiagnose’ Command Injection Privilege Escalation (Metasploit)
This Metasploit module exploits a command injection in TimeMachine on macOS
WorkSuite PRM 2.4 – ‘password’ SQL Injection
Varient 1.6.1 – SQL Injection
CiuisCRM 1.6 – ‘eventType’ SQL Injection
PowerPanel Business Edition – Cross-Site Scripting