A vulnerability exists managing a shadow stack in ESET Antivirus. It allows complete remote root/SYSTEM command execution on all ESET platforms and products.
>> AUTHOR: deepcore
Sam Spade version 1.14 S-Lang command field SEH overflow exploit.
POLLSolved version 1.5.2 suffers from a remote SQL injection vulnerability that allows for authentication bypass. Support for this script is deprecated.
This Metasploit module exploits an arbitrary file upload vulnerability found within the Up.Time monitoring server 7.2 and below. A malicious entity can upload a PHP file into the webroot without…
This Metasploit module exploits a vulnerability found in Uptime version 7.4.0 and 7.5.0. The vulnerability began as a classic arbitrary file upload vulnerability in post2file.php, which can be exploited by…
This Metasploit module exploits a PHP object injection vulnerability in vBulletin 5.1.2 to 5.1.9
Tails versions 1.6 and below suffers from an information leak vulnerability via a symlink attack.
b374k web shell versions 2.8 and 3.2.3 suffer from a cross site request forgery vulnerability that allows for remote command injection.
OpenBSD net-snmp suffers from a credential and information disclosure vulnerability.
b374k Web Shell – CSRF Command Injection