ASUS ASMB8 iKVM firmware versions 1.14.51 and below suffers from a flaw where SNMPv2 can be used with write access to introduce arbitrary extensions to achieve remote code execution as…
>> AUTHOR: deepcore
ABUS Security Camera version TVIP 20000-21150 suffers from local file inclusion, hardcoded credential, and command injection vulnerabilities. When coupled together, they can be leveraged to achieve remote access as root…
ASUS ASMB8 iKVM firmware versions 1.14.51 and below suffers from a flaw where SNMPv2 can be used with write access to introduce arbitrary extensions to achieve remote code execution as…
Kshitish Multipurpose eCommerce Platform version 2.0 leaves default administrative credentials installed post installation.
Auto Dealer Management System version 1.0 suffers from a privilege escalation vulnerability due to a broken access control where a lower privileged user’s cookie can be leveraged to takeover an…
Auto Dealer Management System version 1.0 suffers from multiple remote SQL injection vulnerabilities.
Employee Task Management System version 1.0 suffers from a privilege escalation vulnerability due to a broken access control where a lower privileged user’s cookie can be leveraged to takeover an…
Employee Task Management System version 1.0 suffers from multiple remote SQL injection vulnerabilities.
Arm Mali suffers from an insufficient cache invalidation for non-page-aligned user buffer imports.
Music Gallery Site version 1.0 suffers from a missing authentication vulnerability that allows for privilege escalation.