Chrome suffers from a copy-on-write check bypass in JSNativeContextSpecialization::BuildElementAccess.
>> CATEGORY: exploit
Jettweb Ready Rent A Car Script version 4 suffers from a cross site scripting vulnerability.
This Metasploit module exploits a command injection vulnerability in the Ivanti Cloud Services Appliance (CSA) for Ivanti Endpoint Manager. A cookie based code injection vulnerability in the Cloud Services Appliance…
Yuvan Education CRM version 3.0 suffers from a remote SQL injection vulnerability.
Infokart version 1.1 suffers from a remote SQL Injection vulnerability.
Global Infotech CMS version 1.0 suffers from multiple remote SQL injection vulnerabilities.
Infobool version 3.0 suffers from a remote SQL Injection vulnerability.
KesionCMS X version 1.5.160902 appears to leave a default administrative account in place post installation.
Inlislite version 3.2 appears to leave a default administrative account in place post installation.
Incrementer CMS version 0.1 appears to leave a default administrative account in place post installation.