Joomla Extra Search component version 2.2.8 suffers from a remote SQL injection vulnerability.
>> CATEGORY: exploit
GLink Word Link Script version 1.2.3 suffers from a remote SQL injection vulnerability.
websiteConnector.js content script in LastPass allows for proxying of internal RPC commands.
Portable OpenSSH supports running on Cygwin. However, the SFTP client only filters out forward slashes (in do_lsreaddir()) and the directory names “.” and “..” (in download_dir_internal()). On Windows, including in…
Disk Sorter Enterprise version 9.5.12 GET buffer overflow SEH exploit.
Solare Datensysteme GmbH Solar-Log versions 250, 300, 500, 800e, 1000, 1000 PM+, 1200, and 2000 suffer from cross site request forgery, cross site scripting, file upload, information disclosure, and denial…
This Metasploit module will setup an SMTP server expecting a connection from SysGauge 1.5.18 via its SMTP server validation. The module sends a malicious response along in the 220 service…
This Metasploit module utilizes an administrative module which allows for command execution. This page is completely unprotected from any authentication when given a POST request.
Google Nest Cam version 5.2.1 suffers from buffer overflow conditions over bluetooth LE.