>> CATEGORY: exploit

Backdoor.Win32.FTP99 malware suffers from a man-in-the-middle vulnerability.

PHPIPAM version 1.4.4 suffers from an authenticated remote SQL injection vulnerability.

WebACMS version 2.1.0 suffers from a cross site scripting vulnerability.

Backdoor.Win32.Hanuman.b malware suffers from a code execution vulnerability.

Backdoor.Win32.FTP.Lana.01.d malware suffers from having a weak hardcoded password.

Online Project Time Management System version 1.0 suffers from an authenticated remote SQL injection vulnerability.

Backdoor.Win32.FTP.Lana.01.d malware suffers from a man-in-the-middle vulnerability.

Ametys CMS version 4.4.1 suffers from a cross site scripting vulnerability.

CosaNostra Builder malware suffers from an insecure permissions vulnerability.

Backdoor.Win32.DRA.c malware suffers from a weak hardcoded password vulnerability.