FortiClient stores the VPN authentication credentials in a configuration file (on Linux or Mac OSX) or in registry (on Windows). The credentials are encrypted but can still be recovered since…
>> CATEGORY: exploit
This Metasploit module exploits a Clickjacking vulnerability in pfSense versions 2.4.1 and below. pfSense is a free and open source firewall and router. It was found that the pfSense WebGUI…
This Metasploit module exploits a stack buffer overflow in Advantech WebAccess version 8.2. By sending a specially crafted DCERPC request, an attacker could overflow the buffer and execute arbitrary code.
This Metasploit module exploits a stack buffer overflow in Dup Scout Enterprise version 10.0.18. The buffer overflow exists via the web interface during login. This gives NT AUTHORITYSYSTEM access.
Multireligion Responsive Matrimonial version 4.7.2 suffers from a remote SQL injection vulnerability.
Responsive Events And Movie Ticket Booking Script version 3.2.1 suffers from a remote SQL injection vulnerability.
Multiplex Movie Theater Booking Script version 3.1.5 suffers from a remote SQL injection vulnerability.
Single Theater Booking Script version 3.2.1 suffers from a remote SQL injection vulnerability.
Advanced Real Estate Script version 4.0.7 suffers from a remote SQL injection vulnerability.
Entrepreneur Bus Booking Script version 3.0.4 suffers from a remote SQL injection vulnerability.