Tigase XMPP server suffers from a security vulnerability due to not escaping double quote character when serializing parsed XML. This can be used to smuggle (or, if you prefer, inject)…
>> CATEGORY: exploit
ChromeOS uses usbguard when the screen is locked but appears to suffer from bypass issues.
Tigase XMPP server suffers from a security vulnerability due to not escaping double quote character when serializing parsed XML. This can be used to smuggle (or, if you prefer, inject)…
The print spooler service can be abused by an authenticated remote attacker to load a DLL through a crafted DCERPC request, resulting in remote code execution as NT AUTHORITYSYSTEM. This…
The print spooler service can be abused by an authenticated remote attacker to load a DLL through a crafted DCERPC request, resulting in remote code execution as NT AUTHORITY\SYSTEM. This…
This report describes a vulnerability chain that enables a malicious user to compromise another user over Zoom chat. User interaction is not required for a successful attack. The only ability…
Online Fire Reporting System version 1.0 suffers from a remote SQL injection vulnerability.
CLink Office version 2.0 anti-spam management console suffers from a remote SQL injection vulnerability.
Online Fire Reporting System version 1.0 suffers from a remote SQL injection vulnerability.
OpenCart Newsletter module version 3.0.2.0 suffers from a remote blind SQL injection vulnerability.