Tns-Voyages Script version 1.7.1 suffers from a remote SQL injection vulnerability.
>> CATEGORY: exploit
Magento versions prior to 2.0.6 suffer from an unauthenticated arbitrary unserialize to arbitrary write file vulnerability.
An independent vulnerability laboratory researcher discovered multiple vulnerabilities in the official Teampass v2.1.25 application.
The vulnerability lab core team discovered an application-side web vulnerability in the official Peplink InControl 2 cloud based device managemet web-application.
Symantec / Norton Antivirus suffers from a remote ring0 memory corruption vulnerability.
gdi32.dll in Microsoft Windows suffers from a heap-based buffer overflow in ExtEscape().
Microsoft Visual C++ 2010 Redistributable Package and Visual C++ Redistributable for Visual Studio 2015 suffer from multiple dll hijacking vulnerabilities.
AutoIT version 3 suffers from a dll hijacking vulnerability.
This Metasploit module exploits an authentication bypass vulnerability in Meteocontrol WEBLog (all models). This vulnerability allows extracting Administrator password for the device management portal.
This Metasploit module exploits a vulnerability found in Dell SonicWALL Scrutinizer. The methodDetail parameter in exporters.php allows an attacker to write arbitrary files to the file system with an SQL…