Banco Guayaquil for iOS version 8.0.0 suffers from a script insertion vulnerability where a user can insert malicious code into their own name and could possibly be leveraged for attacks…
>> CATEGORY: exploit
Backdoor.Win32.Wollf.16 malware suffers from an authentication bypass vulnerability.
Backdoor.Win32.Wollf.16 malware suffers from a hardcoded credential vulnerability.
VulturiBuilder malware suffers from an insecure permissions vulnerability.
The panel for Collector Stealer malware version 2.0.0 stores the login credentials in plaintext in its MySQL database. Third-party attackers who gain access to the system can read the database…
Backdoor.Win32.Wisell malware suffers from a remote command execution vulnerability.
The panel for Collector Stealer malware version 2.0.0 suffers from a man-in-the-middle vulnerability.
Ransomware Builder Babuk malware suffers from an insecure permissions vulnerability.
VMware vCenter Server is affected by the Log4Shell vulnerability whereby a JNDI string can be sent to the server that will cause it to connect to the attacker and deserialize…
This Metasploit module exploits a command injection vulnerability in Grandstream GXV3175 IP multimedia phones. The settimezone action does not validate input in the timezone parameter allowing injection of arbitrary commands….