PDFCOMPLETE Corporate Edition 4.1.45 – ‘pdfcDispatcher’ Unquoted Service Path
Tags: 0day, remote exploitNode.JS node-serialize remote code execution exploit.
Backdoor.Win32.Aphexdoor.LiteSock malware suffers from a buffer overflow vulnerability.
Online Car Rental version 1.0 suffers from a remote shell upload vulnerability.
b2evolution CMS version 6.11.6 suffers from an open redirection vulnerability.
b2evolution CMS version 6.11.6 suffers from a cross site scripting vulnerability.
Adobe Magento Commerce versions prior to 2.4.2 suffer from a cross site scripting vulnerability.
Microsoft Windows has a privilege escalation vulnerability. When a process is running in a server silo, the checks for trusted hive registry key symbolic links is disabled leading to elevation of privilege.
This Metasploit module exploits an authenticated Java deserialization that affects a truckload of Micro Focus products: Operations Bridge Manager, Application Performance Management, Data Center Automation, Universal CMDB, Hybrid Cloud Management and Service Management Automation. However, this module was only tested on Operations Bridge Manager. Exploiting this vulnerability will result in remote code execution as the […]
https://www.mayo.go.th/manis.htm notified by Dhen Bhocil
Tags: defacement