Online Movie Streaming version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
>> ARCHIVE: 2021-01
PLANEX CS-QP50F-ING2 security surveillance smart camera remote configuration disclosure exploit.
Node version 14.11.0 is vulnerable to a use-after-free bug in its TLS implementation.
This Metasploit module exploits an improper input sanitization in SpamTitan versions 7.01, 7.02, 7.03 and 7.07 to inject command directives into the SNMP configuration file and get remote code execution…
PaperStream IP (TWAIN) 1.42.0.5685 – Local Privilege Escalation
WinAVR Version 20100110 – Insecure Folder Permissions
Newgen Correspondence Management System (corms) eGov 12.0 – IDOR
Advanced Webhost Billing System 3.7.0 – Cross-Site Request Forgery (CSRF)
WordPress Plugin WP24 Domain Check 1.6.2 – ‘fieldnameDomain’ Stored Cross Site Scripting
Responsive E-Learning System 1.0 – Stored Cross Site Scripting