Multiple vulnerabilities were identified in Aruba AP, IAP and AMP devices. The vulnerabilities were discovered during a black box security assessment and therefore the vulnerability list should not be considered…
>> CATEGORY: exploit
Trend Micro Direct Pass suffers from bypass and cross site scripting vulnerabilities.
Stanford suffered from a remote SQL injection vulnerability.
Notes version 4.5 for iOS suffers from an arbitrary file upload vulnerability.
Certec EDV atvise SCADA server version 2.5.9 suffers from a privilege escalation vulnerability.
Dell SonicWall Scrutinizer versions 11.0.1 and below setUserSkin/deleteTab SQL injection / remote code execution exploit that leverages a vulnerability found by Brandon Perry in July of 2014.
Microsoft Windows blue screen of death exploit that leverages a privilege escalation vulnerability as defined in CVE-2016-0051.
manager.skype.com suffered from a filter bypass vulnerability.
WordPress Event Registration plugin version 6.02.02 suffers from cross site scripting and remote SQL injection vulnerabilities.
FTP JCL execution exploit. Requires valid credentials to the target system.