This Metasploit module exploits an unauthenticated command injection vulnerability in the yrange parameter in OpenTSDB through 2.4.0 (CVE-2020-35476) in order to achieve unauthenticated remote code execution as the root user….
>> AUTHOR: deepcore
http://ecase.dopa.go.th notified by OğuzKağan-AYT
http://khamyai-ks.go.th/public/ notified by medjed.ko
http://sukhothaipao.go.th/public/ notified by Admirale_Mouh
http://khaokhlung.go.th/public/dz.php notified by Admirale_Mouh
http://khaochangum.go.th/public/ notified by Admirale_Mouh
This Metasploit module exploits an unauthenticated command injection vulnerability in the yrange parameter in OpenTSDB through 2.4.0 (CVE-2020-35476) in order to achieve unauthenticated remote code execution as the root user….
Senayan Library Management System version 9.2.2 suffers from a cross site scripting vulnerability.
Senayan Library Management System version 9.2.2 suffers from a remote SQL injection vulnerability.
4images version 1.9 suffers from a remote command execution vulnerability.