Trojan.Win32.Siscos.bqe malware suffers from an insecure permissions vulnerability.
>> CATEGORY: exploit
This Metasploit module exploits an unauthenticated arbitrary file upload via an insecure POST request in SonLogger. It has been tested on version less than 6.4.1 in Windows 10 Enterprise.
SonLogger version 4.2.3.3 suffers from SuperAdmin account creation and information disclosure vulnerabilities.
Online News Portal version 1.0 suffers from a persistent cross site scripting vulnerability. Original discovery of persistent cross site scripting in this version was made by Parshwa Bhavsar in December…
Online News Portal version 1.0 suffers from a remote SQL injection vulnerability.
A buffer overflow was identified in the VoIPmonitor live sniffer feature. The description variable in the function save_packet_sql is defined as a fixed length array of 1024 characters. The description…
Static binaries provided for VoIPmonitor version2 7.5 are built without any memory corruption protection in place.
CoreGraphics can be made to write out-of-bounds memory when rendering a specially crafted font. This vulnerability can also be triggered through Safari. The vulnerability was confirmed on macOS Big Sur…
ExpressionEngine versions 6.0.2 and below suffer from a Translate::save PHP code injection vulnerability.
D-Link DIR-3060 versions 1.11b04 and below suffer from an authenticated command injection vulnerability.