Microsoft Exchange Server has a flaw that exists within the HasValidCanary function inside of the Canary15 class. The issue results in an insecure generation of cross site request forgery tokens…
>> CATEGORY: exploit
Backdoor.Win32.Agent.xw malware suffers from denial of service and null pointer vulnerabilities.
VMware vCenter version 6.5 and 7.0 remote code execution proof of concept exploit.
Python jsonpickle version 2.0.0 suffers from a remote code execution vulnerability.
Backdoor.Win32.Delf.adag malware suffers from hardcoded credential and traversal vulnerabilities.
LayerBB version 1.1.4 suffers from a remote SQL injection vulnerability.
Unified Remote version 3.9.0.2463 suffers from a remote code execution vulnerability.
eChat version 1.0 suffers from a remote SQL injection vulnerability.
Monica version 2.19.1 suffers from a cross site scripting vulnerability.
HFS (HTTP File Server) version 2.3.x remote code execution exploit.