Odin Secure FTP Expert version 7.6.3 Site Info denial of service proof of concept exploit.
>> ARCHIVE: 2020-03
DesignMasterEvents CMS version 1.0 suffers from cross site scripting and remote SQL injection vulnerabilities.
WordPress Event-Registration plugin version 5.43 suffers from an arbitrary file upload vulnerability.
Zen Load Balancer version 3.10.1 suffers from a remote code execution vulnerability.
Joomla Fabrik component version 3.9.11 suffers from a directory traversal vulnerability.
10-Strike Network Inventory Explorer version 9.03 Read-from-file buffer overflow exploit that uses SEH and ROP.
DLINK DWL-2600 – Authenticated Remote Command Injection (Metasploit)
Grandstream UCM6200 Series CTI Interface – ‘user_password’ SQL Injection
FlashFXP 4.2.0 Build 1730 – Denial of Service (PoC)
This Metasploit module can be used to leverage the extension functionality added since Redis 4.0.0 to execute arbitrary code. To transmit the given extension it makes use of the feature…