WinRar 5.21 – SFX OLE Command Execution
>> AUTHOR: deepcore
WinRar 5.21 – SFX OLE Command Execution
FreshFTP 5.52 – .qfl Crash PoC
FortiManager 5.2.2 – Persistent XSS Vulnerabilities
X2Engine 4.2 – CSRF Vulnerability
X2Engine 4.2 – Arbitrary File Upload
An independent vulnerability laboratory researcher discovered a client-side vulnerability in the offical NodeBB v0.8.2 forum web-application.
The Vulnerability Laboratory Core Research Team discovered a local file include vulnerability in the official My.WiFi USB Drive v1.0 iOS mobile web-application.
The Vulnerability Laboratory Research Team discovered an application-side input validation web vulnerability in the official Flowdock online service web-application.
Cisco AnyConnect Secure Mobility Client for OS X is affected by a vulnerability that allows local attackers to mount arbitrary DMG files at arbitrary mount points. By exploiting this vulnerability…
Cisco AnyConnect Secure Mobility Client for Windows is affected by an vulnerability that allows local attackers to execute arbitrary DLL files with elevated privilege. By exploiting this vulnerability is is…