Druva inSync Windows Client version 6.6.3 suffers from a local privilege escalation vulnerability.
>> AUTHOR: deepcore
This Metasploit module exploits a vulnerability found in Synology DiskStation Manager (DSM) versions prior to 5.2-5967-5, which allows the execution of arbitrary commands under root privileges after website authentication. The…
This Metasploit module exploits a ViewState .NET deserialization vulnerability in web-based MS SQL Server management tool myLittleAdmin, for version 3.8 and likely older versions, due to hardcoded machineKey parameters in…
Apple Security Advisory 2020-05-20-1 – Xcode 11.5 is now available and addresses an issue where a crafted git URL that contains a newline in it may cause credential information to…
http://charoenrat.go.th notified by 1K4lL_*
WordPress Plugin Form Maker 5.4.1 – ‘s’ SQL Injection (Authenticated)
Plesk/myLittleAdmin – ViewState .NET Deserialization (Metasploit)
GoldWave – Buffer Overflow (SEH Unicode)
Online Discussion Forum Site 1.0 – Remote Code Execution
VUPlayer 2.49 .m3u – Local Buffer Overflow (DEP,ASLR)