Church Management System 1.0 – Unrestricted File Upload to Remote Code Execution (Authenticated)
>> ARCHIVE: 2021-07
Church Management System 1.0 – ‘Multiple’ Stored Cross-Site Scripting (XSS)
AKCP sensorProbe SPX476 suffers from multiple cross site scripting vulnerabilities.
b2evolution version 7.2.2 suffers from a cross site request forgery vulnerability.
WordPress Modern Events Calendar plugin version 5.16.2 suffers from an issue where unauthenticated parties can export all event data.
WordPress Modern Events Calendar plugin version 5.16.2 suffers from a remote shell upload vulnerability.
Scratch Desktop version 3.17 suffers from code execution and cross site scripting vulnerabilities.
This is the Impacket implementation of the PrintNightmare proof of concept originally created by Zhiniang Peng and Xuefeng Li that leverages a privilege escalation vulnerability in the Windows Print Spooler.
Garbage Collection Management System version 1.0 suffers from a remote SQL injection vulnerability.
PrintNightmare remote code execution proof of concept exploit for the Windows Spooler Service.