VMware Workspace ONE Access contains a vulnerability whereby the horizon user can escalate their privileges to those of the root user by modifying a file and then restarting the vmware-certproxy…
>> ARCHIVE: 2022-08
IObit Malware Fighter version 9.2 fails to provide sufficient anti-tampering protection and that shortcoming can be leveraged to escalate to SYSTEM privileges.
Multi-Language Hotel Management 2022 version 1.0 suffers from a remote SQL injection vulnerability.
MobileIron Core is affected by the Log4Shell vulnerability whereby a JNDI string sent to the server will cause it to connect to the attacker and deserialize a malicious Java object….
This Metasploit module exploits a Java deserialization vulnerability in Zoho ManageEngine Pro before 12101 and PAM360 before 5510. Unauthenticated attackers can send a crafted XML-RPC request containing malicious serialized data…
This Metasploit module exploits a Java deserialization vulnerability in Zoho ManageEngine Pro before 12101 and PAM360 before 5510. Unauthenticated attackers can send a crafted XML-RPC request containing malicious serialized data…
uftpd versions 2.7 through 2.10 suffer from an authenticated directory traversal vulnerability.
uftpd versions 2.7 through 2.10 suffer from an authenticated directory traversal vulnerability.
Crime Reporting System version 1.0 suffers from a remote SQL injection vulnerability.
WordPress SeatReg plugin version 1.23.0 suffers from an open redirection vulnerability.