There exists a command injection vulnerability in the WordPress plugin wp-database-backup for versions less than 5.2. For the backup functionality, the plugin generates a mysqldump command to execute. The user…
>> ARCHIVE: 2019-07
This Metasploit module exploits inadequate access controls within the Schneider Electric Pelco Endura NET55XX webUI to enable the SSH service and change the root password. This module has been tested…
http://nonthaburi.rid.go.th notified by Z3z3-HaCkEr
Apple Security Advisory 2019-7-23-1 – iCloud for Windows 7.13 is now available and addresses code execution and cross site scripting vulnerabilities.
Apple Security Advisory 2019-7-23-2 – iTunes for Windows 12.9.6 is now available and addresses code execution and cross site scripting vulnerabilities.
Apple Security Advisory 2019-7-23-3 – iCloud for Windows 10.6 is now available and addresses code execution and cross site scripting vulnerabilities.
WordPress Hybrid Composer plugin version 1.4.6 suffers from an unauthenticated configuration access vulnerability.
Comtrend AR-5310 suffers from a restricted shell escape vulnerability.
Proof of concept instructions to exploit a Docker container escape vulnerability.
BACnet Stack version 0.8.6 suffers from a denial of service vulnerability.