Online News Portal version 1.0 suffers from a persistent cross site scripting vulnerability. Original discovery of persistent cross site scripting in this version was made by Parshwa Bhavsar in December…
>> ARCHIVE: 2021-03
CoreGraphics can be made to write out-of-bounds memory when rendering a specially crafted font. This vulnerability can also be triggered through Safari. The vulnerability was confirmed on macOS Big Sur…
Static binaries provided for VoIPmonitor version2 7.5 are built without any memory corruption protection in place.
A buffer overflow was identified in the VoIPmonitor live sniffer feature. The description variable in the function save_packet_sql is defined as a fixed length array of 1024 characters. The description…
ExpressionEngine versions 6.0.2 and below suffer from a Translate::save PHP code injection vulnerability.
GeoGebra 3D Calculator 5.0.511.0 – Denial of Service (PoC)
GeoGebra CAS Calculator 6.0.631.0 – Denial of Service (PoC)
GeoGebra Classic 5.0.631.0-d – Denial of Service (PoC)
Alphaware E-Commerce System 1.0 – Unauthenicated Remote Code Execution (File Upload + SQL injection)
GeoGebra Graphing Calculator 6.0.631.0 – Denial Of Service (PoC)