WebHMI version 4.0 suffers from an authenticated remote code execution vulnerability.
>> CATEGORY: exploit
Due to insecure fallback behavior, a man-in-the-middle attacker can bypass NNE’s protection against man-in-the-middle attacks and hijack authenticated connections. In some configurations, a full man-in-the-middle attack is possible. Oracle Database…
Backdoor.Win32.Ramus malware suffers from a code execution vulnerability.
Backdoor.Win32.Phase.11 malware suffers from a code execution vulnerability.
NNE’s integrity protection mechanism deliberately weakens the key used for computing per-packet message authentication codes (MACs). Oracle Database versions 19c, 12.2.0.1, and 12.1.0.2 are affected.
This document covers a vulnerability in policy kit (polkit) used on many Linux distributions, which enables an unprivileged local user to get a privileged shell (root) on the system by…
Apache Log4j2 versions 2.14.1 and below proof of concept remote code execution exploit. JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and…
Free School Management Software version 1.0 suffers from a remote shell upload vulnerability.
Free School Management Software version 1.0 suffers from a persistent cross site scripting vulnerability.