>> ARCHIVE: 2021-02

Node.JS node-serialize remote code execution exploit.

Backdoor.Win32.Aphexdoor.LiteSock malware suffers from a buffer overflow vulnerability.

Online Car Rental version 1.0 suffers from a remote shell upload vulnerability.

b2evolution CMS version 6.11.6 suffers from an open redirection vulnerability.

b2evolution CMS version 6.11.6 suffers from a cross site scripting vulnerability.

Adobe Magento Commerce versions prior to 2.4.2 suffer from a cross site scripting vulnerability.

Microsoft Windows has a privilege escalation vulnerability. When a process is running in a server silo, the checks for trusted hive registry key symbolic links is disabled leading to elevation…

This Metasploit module exploits an authenticated Java deserialization that affects a truckload of Micro Focus products: Operations Bridge Manager, Application Performance Management, Data Center Automation, Universal CMDB, Hybrid Cloud Management…