DouPHP version 1.2 Release 20141027 suffers from a remote SQL injection vulnerability.
>> CATEGORY: exploit
Lockbit ransomware version 3.0 apparently now requires a password to execute as noted by “@vxunderground”, but does not properly check bounds for both the -pass and -k arguments. Supplying a…
Lockbit ransomware version 3.0 apparently now requires a password to execute as noted by “@vxunderground”, but does not properly check bounds for both the -pass and -k arguments. Supplying a…
TypeORM versions prior to 0.3.0 suffer from a remote SQL injection vulnerability in the findOne function.
Classified Listing version 2.2.9 suffers from a cross site scripting vulnerability.
BigBlueButton versions 2.3, prior to 2.4.8, and prior to 2.5.0 suffer from a persistent cross site scripting vulnerability.
Carel pCOWeb HVAC BACnet Gateway version 2.1.0 suffers from an unauthenticated arbitrary file disclosure vulnerability. Input passed through the file GET parameter through the logdownload.cgi bash script is not properly…
Several PHP compatibility libraries contain a potential remote code execution flaw in their json_decode() function based on having copy pasted existing vulnerable code. Affected components include the WassUp Realtime analytics…
This archive contains all of the 92 exploits added to Packet Storm in June, 2022.
This archive contains all of the 92 exploits added to Packet Storm in June, 2022.