Manage Engine ServiceDesk Plus version 9.3 suffers from a privilege escalation vulnerability.
>> AUTHOR: deepcore
FreeSMS version 2.1.2 suffers from a remote SQL injection vulnerability.
This Metasploit module exploits a path traversal and a local file inclusion vulnerability on WordPress versions 5.0.0 and versions below or equal to 4.9.8. The crop-image function allows a user,…
iScripts ReserveLogic suffers from a remote SQL injection vulnerability.
AIDA64 Business version 5.99.4900 SEH buffer overflow exploit with egghunter.
Ashop Shopping Cart Software suffers from a remote SQL injection vulnerability.
PhreeBooks ERP version 5.2.3 suffers from a remote command execution vulnerability.
PhreeBooks ERP version 5.2.3 suffers from an arbitrary file upload vulnerability.
Clinic Pro version 4 suffers from a remote SQL injection vulnerability.
Apache versions 2.4.17 through 2.4.38 suffer from a local root privilege escalation vulnerability due to an out-of-bounds array access leading to an arbitrary function call.