DomainMOD 4.11.01 – ‘ssl-provider-name’ Cross-Site Scripting
>> AUTHOR: deepcore
DomainMOD 4.11.01 – ‘ssl-provider-name’ Cross-Site Scripting
DomainMOD 4.11.01 – ‘assets/add/dns.php’ Cross-Site Scripting
DomainMOD 4.11.01 – ‘category.php CatagoryName, StakeHolder’ Cross-Site Scripting
DomainMOD 4.11.01 – ‘assets/edit/host.php?whid=5’ Cross-Site Scripting
WordPress Plugin Booking Calendar 8.4.3 – Authenticated SQL Injection
MediaMonkey 4.1.23 – ‘.mp3’ URL Denial of Service (PoC)
ApowerManager 3.1.7 – Phone Manager Remote Denial of Service (DoS)
MyBB Bans List version 1.0 suffers from a cross site scripting vulnerability.
Webiness Inventory version 2.3 suffers from a remote SQL injection vulnerability.
This Metasploit module generates a download and execute Powershell command to be placed in an .SLK Excel spreadsheet. When executed, it will retrieve a payload via HTTP from a web…