Apache HTTP Server 2.4.50 – Remote Code Execution (RCE) (2)
>> ARCHIVE: 2021-10
Apache HTTP Server 2.4.50 – Remote Code Execution (RCE) (2)
Engineers Online Portal 1.0 – File Upload Remote Code Execution (RCE)
Hikvision Web Server Build 210702 – Command Injection
Jetty version 9.4.37.v20210219 suffers from an information disclosure vulnerability.
Clinic Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for a shell upload.
Online Course Registration version 1.0 suffers from a blind boolean-based remote SQL injection vulnerability.
The Windows IKEEXT service does not verify the SPN when performing AuthIP authentication leading to leaking authentication tokens to untrusted systems.
The Windows IKEEXT service does not verify the SPN when performing AuthIP authentication leading to leaking authentication tokens to untrusted systems.
Easy Chat Server version 3.1 suffers from a directory traversal vulnerability.
NIMax version 5.3.1f0 suffers from multiple denial of service vulnerabilities.