>> CATEGORY: exploit

No abstract description available in the upcomings!

Dropbox version 6.4.14 has an installer that suffers from a dll hijacking vulnerability.

Huge IT Joomla Catalog extension version 1.0.4 suffers from cross site scripting and remote SQL injection vulnerabilities.

Nusiorung CMS 2016 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

WordPress ColorWay theme version 3.4.1 suffers from a cross site scripting vulnerability.

Silurus Classifieds version 2.0 suffers from a cross site scripting vulnerability.

Huawei ISM Professional suffers from a cross site scripting vulnerability.

This Metasploit module exploits a remote command execution vulnerability in the Barracuda Web App Firewall Firmware Version <= 8.0.1.007 and Load Balancer Firmware <= v5.4.0.004 by exploiting a two vulnerabilities…

The Iris ID IrisAccess iCAM4000/7000 series suffer from a use of hard-coded credentials. When visiting the device interface with a browser on port 80, the application loads an applet JAR…

The Iris ID IrisAccess ICU 7000-2 device suffers from an unauthenticated remote command execution vulnerability. The vulnerability exist due to several POST parameters in the ‘/html/SetSmarcardSettings.php’ script not being sanitized…