Projectsend r1295 suffers from a persistent cross site scripting vulnerability.
>> CATEGORY: exploit
Strapi version 3.0.0-beta set password authentication bypass exploit.
Backdoor.Win32.Delf.um malware suffers from bypass and code execution vulnerabilities.
Online Leave Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Umbraco CMS versions 8.9.1 and below suffer from path traversal and arbitrary file write vulnerabilities.
Backdoor.Win32.Delf.wr malware suffers from bypass and code execution vulnerabilities.
Backdoor.Win32.Delf.wr malware suffers from a man-in-the-middle vulnerability.
WordPress ProfilePress plugin version 3.1.3 suffers from a privilege escalation vulnerability.
Git clients that support delay-capable clean / smudge filters and symbolic links on case-insensitive file systems are vulnerable to remote code execution while cloning a repository. Usage of clean /…
Backdoor.Win32.Hupigon.aejq malware suffers from bypass and code execution vulnerabilities.