Disk Sorter Enterprise 12.4.16 – ‘Disk Sorter Enterprise’ Unquoted Service Path
>> AUTHOR: deepcore
Disk Sorter Enterprise 12.4.16 – ‘Disk Sorter Enterprise’ Unquoted Service Path
WordPress InfiniteWP – Client Authentication Bypass (Metasploit)
Disk Savvy Enterprise 12.3.18 – Unquoted Service Path
Wedding Slideshow Studio 1.36 – ‘Name’ Buffer Overflow
OpenSMTPD 6.4.0 < 6.6.1 – Local Privilege Escalation + Remote Code Execution
Wedding Slideshow Studio 1.36 – ‘Key’ Buffer Overflow
Forcepoint WebSecurity 8.5 – Reflective Cross-Site Scripting
LearnDash WordPress LMS Plugin 3.1.2 – Reflective Cross-Site Scripting
This Metasploit module exploits an ssdpcgi remote command execution vulnerability in D-Link devices.
This Metasploit module exploits a command injection in the MAIL FROM field during SMTP interaction with OpenSMTPD to execute code as the root user.