Sandboxie Plus version 0.7.2 suffers from an unquoted service path vulnerability.
>> CATEGORY: exploit
There is an out-of-bounds write vulnerability in WindowsCodecsRaw.dll in the COlympusE300LoadRaw::olympus_e300_load_raw function that can be triggered by parsing a crafted Olympus E300 raw image with Windows Imaging Component (WIC). The…
A remotely exploitable vulnerability exists within HPE System Insight Manager (SIM) version 7.6.x that can be leveraged by a remote unauthenticated attacker to execute code within the context of HPE…
OpenCMS version 11.0.2 suffers from a remote shell upload vulnerability.
Sticky Notes Apps using JavaScript version 1.0 suffers from a persistent cross site scripting vulnerability.
OpenCMS version 11.0.2 suffers from cross site request forgery and open redirection vulnerabilities.
CatDV version 9.2 RMI authentication bypass exploit.
Fluig versions 1.7.0-210217 and below suffer from a path traversal vulnerability.
This Metasploit module exploits an overflow in the Windows Routing and Remote Access Service (RRAS) to execute code as SYSTEM. The RRAS DCERPC endpoint is accessible to unauthenticated users via…
e107 CMS version 2.3.0 suffers from a cross site request forgery vulnerability.