ExpertGPS 6.38 – XML External Entity Injection
>> ARCHIVE: 2020-02
ExpertGPS 6.38 – XML External Entity Injection
Windscribe – WindscribeService Named Pipe Privilege Escalation (Metasploit)
HiSilicon DVR/NVR with hi3520d firmware suffers from having a remote backdoor account vulnerability.
xglance-bin local root privilege escalation exploit that has been tested on Linux RHEL 7.x/8.x systems.
AVideo Platform version 8.1 suffers from a cross site request forgery vulnerability.
AVideo Platform version 8.1 suffers from an information disclosure vulnerability that allows for user enumeration.
Verodin Director Web Console version 3.5.4.0 remote authenticated password disclosure proof of concept exploit.
Kronos WebTA version 4.0 suffers from cross site scripting and authenticated remote privilege escalation vulnerabilities.
Socat version 1.7.3.4 heap-based overflow proof of concept exploit.
This Metasploit module exploits an authenticated remote code execution vulnerability in Wago PFC200.