This Metasploit module exploits the file upload vulnerability of baldr malware panel in order to achieve arbitrary code execution.
>> ARCHIVE: 2019-08
Joomla JS Support Ticket component version 1.1.5 suffers from a remote SQL injection vulnerability.
Joomla JS Support Ticket component version 1.1.5 suffers from an arbitrary file download vulnerability.
Adive Framework version 2.0.7 suffers from a cross site request forgery vulnerability.
WordPress JoomSport plugin version 3.3 suffers from a remote SQL injection vulnerability.
Opencart versions 3.0.3.2 and below insecure OCMod generation pre-authentication remote code execution exploit.
Fortinet FortiRecorder versions 2.7.3 and below have a hardcoded password vulnerability.
Daily Expense Manager version 1.0 suffers from a cross site request forgery vulnerability.
http://www.songkhla.m-society.go.th notified by Jax_BCD
This repository contains several tools Project Zero uses to test iPhone messaging. It includes SmsSimulator: an SMS simulator for iPhone, iMessage: tools for sending and dumping iMessage messages, and imapiness:…