WordPress Photo Gallery plugin versions 1.5.69 and below suffer from multiple reflective cross site scripting vulnerabilities.
>> ARCHIVE: 2021-04
xscreensaver suffers from a raw socket leak vulnerability. Proof of concept exploit demonstrates running tcpdump via this issue.
This Metasploit module exploits CVE-2020-5791, an OS command injection vulnerability on Nagios XI versions 5.6.0 through 5.7.3 in admin/mibs.php that enables an authenticated user with admin privileges to achieve remote…
Trojan.Win32.Agent.hsm malware suffers from an insecure permissions vulnerability.
http://plc.go.th notified by Family Attack Cyber
glFTPd version 2.11a remote denial of service exploit.
GetSimple CMS My SMTP Contact plugin versions 1.1.1 and below cross site request forgery to remote code execution exploit.
GetSimple CMS My SMTP Contact Plugin 1.1.1 – CSRF to RCE
Native Church Website version 1.0 suffers from a remote shell upload vulnerability.
Simple Student Information System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.