openITCOCKPIT 3.6.1-2 – Cross-Site Request Forgery
>> AUTHOR: deepcore
openITCOCKPIT 3.6.1-2 – Cross-Site Request Forgery
WordPress Plugin Import Export WordPress Users 1.3.1 – CSV Injection
WordPress Plugin UserPro 4.9.32 – Cross-Site Scripting
Exim 4.87 / 4.91 – Local Privilege Escalation (Metasploit)
http://www.panghinfon.go.th/m-1.html notified by moncet
Nimble Stream versions 3.0.2-2 up to 3.5.4.9 suffer from a directory traversal vulnerability.
This Metasploit module exploits a backdoor in Webmin versions 1.890 through 1.920. Only the SourceForge downloads were backdoored, but they are listed as official downloads on the project’s site. Unknown…
This Metasploit module exploits a flaw in Exim versions 4.87 to 4.91 (inclusive). Improper validation of recipient address in deliver_message() function in /src/deliver.c may lead to command execution with root…
http://khaophoem.go.th/m-1.html notified by moncet