X2Engine version 4.2 suffers from multiple cross site scripting vulnerabilities.
>> CATEGORY: exploit
X2Engine version 4.2 suffers from a remote arbitrary file upload vulnerability.
X2Engine version 4.2 suffers from cross site request forgery vulnerabilities.
This Metasploit module exploits a vulnerability in the Watchguard XCS ‘FixCorruptMail’ script called by root’s crontab which can be exploited to run a command as root within 3 minutes.
This Metasploit module exploits two separate vulnerabilities found in the Watchguard XCS virtual appliance to gain command execution. By exploiting an unauthenticated SQL injection, a remote attacker may insert a…
Flowdock API suffered from a script insertion vulnerability.
Due to a server misconfiguration, customers of Unified Layer suffer from a remote shell upload vulnerability.
SMF (Simple Machine Forum) versions 2.0.10 and below remote memory exfiltration exploit.
FortiManager version 5.2.2 suffers from multiple cross site scripting vulnerabilities.
An independent vulnerability laboratory researcher discovered a client-side vulnerability in the offical NodeBB v0.8.2 forum web-application.