Liferay Portal 7.1 CE GA=3 / SimpleCaptcha API – Cross-Site Scripting
>> AUTHOR: deepcore
Liferay Portal 7.1 CE GA=3 / SimpleCaptcha API – Cross-Site Scripting
Webmin 1.910 – ‘Package Updates’ Remote Command Execution (Metasploit)
Ubuntu 18.04 – ‘lxd’ Privilege Escalation
UliCMS 2019.1 ‘Spitting Lama’ – Persistent Cross-Site Scripting
Linux/x86_64 – Bind (4444/TCP) Shell (/bin/sh) Shellcode (104 bytes)
Microsoft Windows AppX Deployment Service local privilege escalation exploit that bypasses CVE-2019-0841.
Zimbra versions prior to 8.8.1 suffer from XML external entity injection and server-side request forgery vulnerabilities.
WordPress Satoshi theme version 2.0 suffers from cross site request forgery and remote file upload vulnerabilities.
Supra Smart Cloud TV suffers from an openLiveURL() remote file inclusion vulnerability.
Linux/x86_64 – Bind (4444/TCP) Shell (/bin/sh) Shellcode (131 bytes)