Inim Electronics Smartliving SmartLAN/G/SI versions 6.x and below suffer from a hard-coded credential vulnerability.
>> AUTHOR: deepcore
Apache Olingo OData versions 4.x.x through 4.6.x suffer from an XML external entity injection vulnerability.
DAViCal CalDAV Server versions 1.1.8 and below suffer from a cross site request forgery vulnerability.
DAViCal CalDAV Server versions 1.1.8 and below suffer from a persistent cross site scripting vulnerability.
DAViCal CalDAV Server versions 1.1.8 and below suffer from a reflective cross site scripting vulnerability.
This Metasploit module exploits vBulletin versions 5.x through 5.5.4 leveraging a remote command execution vulnerability via the widgetConfig[code] parameter in an ajax/render/widget_php routestring POST request.
Product Key Explorer 4.2.0.0 – ‘Name’ Denial of Service (POC)
Product Key Explorer 4.2.0.0 – ‘Key’ Denial of Service (PoC)
AppXSvc 17763 – Arbitrary File Overwrite (DoS)
Adobe Acrobat Reader DC – Heap-Based Memory Corruption due to Malformed TTF Font