Pandora FMS version 7.0 suffers from an authenticated remote code execution vulnerability.
>> AUTHOR: deepcore
OpenTFTP version 1.66 suffers from a local privilege escalation vulnerability.
SuiteCRM versions 7.11.11 and below suffer from an action_saveHTMLField bean manipulation vulnerability.
SuiteCRM versions 7.11.11 and below suffer from an add_to_prospect_list broken access control that allows for local file inclusion attacks.
SuiteCRM versions 7.11.10 and below suffer from multiple remote SQL injection vulnerabilities.
launchd on macOS and iOS suffer from a memory corruption issue due to a lack of bounds checking when parsing XPC messages.
XPC fast path fails to ensure NULL termination of XPC strings, leading to memory disclosure and corruption vulnerabilities in XPC services.
The Samsung kernel suffers from a heap out-of-bounds write in /dev/tsmux.
This Metasploit modules waits for broadcasts from Ainz CrossChex looking for new devices, and returns a custom broadcast, triggering a stack buffer overflow.
phpMyChat Plus 1.98 – ‘pmc_username’ SQL Injection