Trojan-Dropper.Win32.Krepper.a malware suffers from an unauthenticated remote command execution vulnerability.
>> AUTHOR: deepcore
This Metasploit module allows an attacker with a privileged rConfig account to start a reverse shell due to an arbitrary file upload vulnerability in /lib/crud/vendors.crud.php.
Simple Client Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Seeddms version 5.1.10 authenticated remote command execution exploit.
Online Pet Shop We App version 1.0 suffers from remote SQL injection and shell upload vulnerabilities.
This Metasploit module exploits the file upload vulnerability of Lightweight self-hosted facebook-styled PHP blog and allows remote code execution.
SAPSprint version 7.60 suffers from an unquoted service path vulnerability.
https://www.afrims.go.th/o.txt notified by Mr.ToKeiChun69
This Metasploit module allows an attacker with a privileged rConfig account to start a reverse shell due to an arbitrary file upload vulnerability in /lib/crud/vendors.crud.php.
Lightweight facebook-styled blog 1.3 – Remote Code Execution (RCE) (Authenticated) (Metasploit)