Human Resource Information System version 1.0 suffers from an unauthenticated administrative account creation vulnerability.
>> CATEGORY: exploit
Shenzhen Skyworth RN510 suffers from a buffer overflow vulnerability that allows for remote code execution.
Internship Portal Management System version 1.0 suffers from a remote shell upload vulnerability.
Shenzhen Skyworth RN510 suffers from an unauthenticated sensitive information disclosure vulnerability.
Shenzhen Skyworth RN510 suffers from cross site request forgery and cross site scripting vulnerabilities.
This Metasploit module exploits an arbitrary config write/update vulnerability to achieve remote code execution. Unauthenticated users can execute a terminal command under the context of the web server user. Grav…
The Custom JS plugin version 0.1 for GetSimple CMS suffers from a cross site request forgery vulnerability that allows remote unauthenticated attackers to inject arbitrary client-side code into authenticated administrators…
This archive contains all of the 162 exploits added to Packet Storm in April, 2021.
Gadget Works Online Ordering System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
TYPO3 version 6.2.1 suffers from a remote SQL injection vulnerability.