Comodo Unified Threat Management Web Console version 2.7.0 suffers from a remote code execution vulnerability.
>> CATEGORY: exploit
Flatpress Add Blog version 1.0.3 suffers from a persistent cross site scripting vulnerability.
Google’s osconfig agent was vulnerable to local privilege escalation due to relying on a predictable path inside the /tmp directory. An unprivileged malicious process could abuse this flaw to win…
Visitor Management System in PHP version 1.0 suffers from a remote SQL injection vulnerability.
Seat Reservation System version 1.0 suffers from an unauthenticated remote SQL injection vulnerability.
Visitor Management System in PHP version 1.0 suffers from an unauthenticated persistent cross site scripting vulnerability.
An unauthenticated Java object deserialization vulnerability exists in the CLI component for Jenkins versions 2.56 and below. The readFrom method within the Command class in the Jenkins CLI remoting component…
This Metasploit module exploits an authenticated command injection vulnerability in Artica Proxy, combined with an authentication bypass discovered on the same version, it is possible to trigger the vulnerability without…
B-swiss 3 Digital Signage System version 3.6.5 is vulnerable to an unauthenticated database download and information disclosure vulnerability. This can enable the attacker to disclose sensitive information resulting in authentication…
B-swiss 3 Digital Signage System version 3.6.5 allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to…