Chikitsa Patient Management System version 2.0.2 suffers from a backup related authenticated remote code execution vulnerability.
Chikitsa Patient Management System version 2.0.2 suffers from a plugin related authenticated remote code execution vulnerability.
MTPutty version 1.0.1 suffers from an SSH password disclosure vulnerability.
WordPress Catch Themes Demo Import plugin versions 1.6.1 and below suffer from a remote shell upload vulnerability.
TestLink versions 1.16 through 1.19 suffer from an arbitrary file download vulnerability.
LimeSurvey version 5.2.4 remote code execution exploit with a reverse shell.
This Metasploit module creates a malicious docx file that when opened in Word on a vulnerable Windows system will lead to code execution. This vulnerability exists because an attacker can craft a malicious ActiveX control to be used by a Microsoft Office document that hosts the browser rendering engine.
Grafana version 8.3.0 suffers from a directory traversal vulnerability that can allow for arbitrary file reading.
Docker proof of concept command execution exploit that leverages runc.