Git clients that support delay-capable clean / smudge filters and symbolic links on case-insensitive file systems are vulnerable to remote code execution while cloning a repository. Usage of clean / smudge filters through Git LFS and a case-insensitive file system changes the checkout order of repository files which enables the placement of a Git hook […]
Backdoor.Win32.BO2K.11.d Buffer Overflow
Backdoor.Win32.BO2K.11.d malware suffers from a buffer overflow vulnerability.
Backdoor.Win32.Hupigon.aejq Authentication Bypass / Code Execution
Backdoor.Win32.Hupigon.aejq malware suffers from bypass and code execution vulnerabilities.
Backdoor.Win32.Hupigon.aejq Man-In-The-Middle
Backdoor.Win32.Hupigon.aejq malware suffers from a man-in-the-middle vulnerability.
Backdoor.Win32.Hupigon.aejq Traversal
Backdoor.Win32.Hupigon.aejq malware suffers from a traversal vulnerability.
BSCW Server XML Injection
BSCW Server versions 7.4.2 and below, 7.3.2 and below, 5.2.3 and below, 5.1.9 and below, and 5.0.11 and below suffer from an XML tag injection vulnerability.
BSCW Server Remote Code Execution
BSCW Server versions 7.4.2 and below, 7.3.2 and below, 5.2.3 and below, 5.1.9 and below, and 5.0.11 and below suffer from an authenticated remote code execution vulnerability.
[dos] Telegram Desktop 2.9.2 – Denial of Service (PoC)
Telegram Desktop 2.9.2 – Denial of Service (PoC)
[webapps] WordPress Plugin Payments Plugin | GetPaid 2.4.6 – HTML Injection
WordPress Plugin Payments Plugin | GetPaid 2.4.6 – HTML Injection
[webapps] Traffic Offense Management System 1.0 – SQLi to Remote Code Execution (RCE) (Unauthenticated)
Traffic Offense Management System 1.0 – SQLi to Remote Code Execution (RCE) (Unauthenticated)