Pandora FMS – Ping Authenticated Remote Code Execution (Metasploit)
>> AUTHOR: deepcore
Pandora FMS – Ping Authenticated Remote Code Execution (Metasploit)
PlaySMS – index.php Unauthenticated Template Injection Code Execution (Metasploit)
DotNetNuke – Cookie Deserialization Remote Code Execution (Metasploit)
Apache Solr – Remote Code Execution via Velocity Template (Metasploit)
Free Desktop Clock version 3.0 unicode SEH stack overflow exploit.
Subex ROC Partner Settlement version 10.5 suffers from an insecure direct object reference vulnerability in the change password function that can allow for account takeover.
Webtateas version 2.0 suffers from an arbitrary file read vulnerability.
Huawei HG630 2 Router suffers from an authentication bypass vulnerability.
WSO2 API Manager Carbon interface version 3.0.0 suffers from an arbitrary file deletion vulnerability.
WordPress Media Library Assistant plugin version 2.81 suffers from a local file inclusion vulnerability.