WinAVR version 20100110 suffers from an insecure folder permissions vulnerability.
>> ARCHIVE: 2021-01
This Metasploit module exploit BITS behavior which tries to connect to the local Windows Remote Management server (WinRM) every times it starts. The module launches a fake WinRM server which…
IPS Community Suite versions 4.5.4 and below suffer from a remote SQL injection vulnerability in the Downloads REST API.
CRUD Operation 1.0 – Multiple Stored XSS
ECSIMAGING PACS 6.21.5 – SQL injection
iBall-Baton WRA150N Rom-0 Backup – File Disclosure (Sensitive Information)
Curfew e-Pass Management System 1.0 – Stored XSS
Cockpit CMS 0.6.1 – Remote Code Execution
Employee Record System 1.0 – Unrestricted File Upload to Remote Code Execution
ECSIMAGING PACS 6.21.5 – Remote code execution