ThinkPHP – Multiple PHP Injection RCEs (Metasploit)
>> ARCHIVE: 2020-04
ThinkPHP – Multiple PHP Injection RCEs (Metasploit)
TP-Link Archer A7/C7 – Unauthenticated LAN Remote Code Execution (Metasploit)
VMware Fusion – USB Arbitrator Setuid Privilege Escalation (Metasploit)
Free Desktop Clock version 3.0 unicode SEH stack overflow exploit.
Subex ROC Partner Settlement version 10.5 suffers from an insecure direct object reference vulnerability in the change password function that can allow for account takeover.
Webtateas version 2.0 suffers from an arbitrary file read vulnerability.
Huawei HG630 2 Router suffers from an authentication bypass vulnerability.
WSO2 API Manager Carbon interface version 3.0.0 suffers from an arbitrary file deletion vulnerability.
WordPress Media Library Assistant plugin version 2.81 suffers from a local file inclusion vulnerability.
B64dec version 1.1.2 SEH buffer overflow exploit with egg hunter.