RICOH Aficio SP 5210SF Printer – ‘entryNameIn’ HTML Injection
[webapps] Alfresco 5.2.4 – Persistent Cross-Site Scripting
Alfresco 5.2.4 – Persistent Cross-Site Scripting
[webapps] RICOH Aficio SP 5200S Printer – 'entryNameIn' HTML Injection
RICOH Aficio SP 5200S Printer – ‘entryNameIn’ HTML Injection
[webapps] GUnet OpenEclass 1.7.3 E-learning platform – 'month' SQL Injection
GUnet OpenEclass 1.7.3 E-learning platform – ‘month’ SQL Injection
Nimsoft nimcontroller 7.80 Remote Code Execution
Nimsoft nimcontroller version 7.80 suffers from an unauthenticated remote code execution vulnerability.
qdPM Remote Code Execution
qdPM versions prior to 9.1 suffer from a remote shell upload vulnerability that allows for remote code execution.
MITREid 1.3.3 Cross Site Scripting
MITREid versions 1.3.3 and below suffer from a cross site scripting vulnerability.
Microsoft Windows Kernel Privilege Escalation
This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Tracing functionality used by the Routing and Remote Access service. The issue results from […]
Packet Storm New Exploits For February, 2020
This archive contains all of the 175 exploits added to Packet Storm in February, 2020.
[webapps] WordPress Plugin Tutor LMS 1.5.3 – Cross-Site Request Forgery (Add User)
WordPress Plugin Tutor LMS 1.5.3 – Cross-Site Request Forgery (Add User)