Foxit PDF Reader suffers from an invalid read vulnerability in CFX_WideString::operator=.
>> CATEGORY: exploit
Foxit PDF Reader suffers from a heap-based memory corruption vulnerability in CPDF_StreamContentParser::~CPDF_StreamContentParser.
Samsung’s SW Update versions 2.2.7.22 and below suffer from having insecure ACLs on its directory allowing any authenticated user to escalate their privileges.
FlashFXP version 5.3.0 suffers from a memory corruption vulnerability.
Joomla Affiliate Tracker version 2.0.3 suffers from a remote SQL injection vulnerability.
iSQL version 1.0 suffers from a buffer overflow vulnerability.
iSQL version 1.0 suffers from a shell command injection vulnerability.
couponPHP version 2.1 suffers from persistent and reflective cross site scripting vulnerabilities.
This Metasploit module exploits a command injection in Apache Continuum versions 1.4.2 and below. By injecting a command into the installation.varValue POST parameter to /continuum/saveInstallation.action, a shell can be spawned.
Zabbix versions 2.2 through 3.0.3 suffer from a remote command execution vulnerability in the JSON-RPC API.