FatPipe Networks WARP/IPVPN/MPVPN version 10.2.2 has the hidden administrative account cmuser that has no password and has write access permissions to the device. The user cmuser is not visible in…
>> AUTHOR: deepcore
FatPipe Networks WARP/IPVPN/MPVPN version 10.2.2 suffers from a remote privilege escalation vulnerability.
Mitrastar GPT-2541GNAC-N1 – Privilege escalation
OpenSIS 8.0 – ‘cp_id_miss_attn’ Reflected Cross-Site Scripting (XSS)
Pet Shop Management System 1.0 – Remote Code Execution (RCE) (Unauthenticated)
WordPress Plugin Redirect 404 to Parent 1.3.0 – Reflected Cross-Site Scripting (XSS)
WordPress Plugin Select All Categories and Taxonomies 1.3.1 – Reflected Cross-Site Scripting (XSS)
Storage Unit Rental Management System 1.0 – Remote Code Execution (RCE) (Unauthenticated)
FatPipe Networks WARP/IPVPN/MPVPN version 10.2.2 suffers from a remote privilege escalation vulnerability.
Zero day exploit for Gamed on iOS 15.0 that demonstrates information disclosure vulnerabilities.