October CMS – Upload Protection Bypass Code Execution (Metasploit)
>> AUTHOR: deepcore
October CMS – Upload Protection Bypass Code Execution (Metasploit)
Windows 10 – UAC Protection Bypass Via Windows Store (WSReset.exe) and Registry (Metasploit)
The vulnerability laboratory research team discovered multiple vulnerabilities in the dabman and imerpial web radios ser…
…
Dolibarr ERP-CRM 10.0.1 – ‘elemid’ SQL Injection
WordPress 5.2.3 – Cross-Site Host Modification
This Metasploit module exploits an Authenticated user with permission to upload and manage media contents can upload various files on the server. Application prevents the user from uploading PHP code…
This Metasploit module exploits a command injection vulnerability in the Collectd graphing functionality in LibreNMS. The to and from parameters used to define the range for a graph are sanitized…
WordPress Ecpay Logistics For WooCommerce plugin version 1.2.181030 suffers from a cross site scripting vulnerability.
This Metasploit module exploits a flaw in the WSReset.exe file associated with the Windows Store. This binary has autoelevate privs, and it will run a binary file contained in a…