This Metasploit module exploits an unauthenticated command injection vulnerability in rConfig versions 3.9.2 and prior. The install directory is not automatically removed after installation, allowing unauthenticated users to execute arbitrary…
>> AUTHOR: deepcore
This Metasploit module exploits CVE-2017-13156 in Android to install a payload into another application. The payload APK will have the same signature and can be installed as an update, preserving…
This Metasploit module exploits the SNMP write access configuration ability of SNMP-EXTEND-MIB to configure MIB extensions and lead to remote code execution.
http://nueaklong.go.th/kurd.html notified by 0x1998
http://www.pattaya.chonburi.police.go.th/README.txt notified by 0x1998
Jenkins build-metrics plugin 1.3 – ‘label’ Cross-Site Scripting
SolarWinds Kiwi Syslog Server 8.3.52 – ‘Kiwi Syslog Server’ Unquoted Service Path
Adive Framework 2.0.7 – Privilege Escalation
Android Janus – APK Signature Bypass (Metasploit)
rConfig – install Command Execution (Metasploit)