UBICOD Medivision Digital Signage version 1.5.1 suffers from a cross site request forgery vulnerability.
>> CATEGORY: exploit
Company Visitor Management System (CVMS) version 1.0 suffers from multiple remote SQL Injection vulnerabilities, one of which allows for authentication bypass.
Directory Management System (DMS) version 1.0 suffers from multiple remote SQL Injection vulnerabilities, one of which allows for authentication bypass.
UBICOD Medivision Digital Signage version 1.5.1 suffers from a privilege escalation vulnerability that is leveraged via authorization bypass.
There is a stack buffer overflow in usrsctp when a server processes a skipped auth block from an incoming connection. Proof of concept exploit included.
Proof of concept denial of service exploit for the SIGRed vulnerability in Microsoft Windows DNS.
Simple Startup Manager version 1.17 local buffer overflow proof of concept exploit.
CMSUno version 1.6 suffers from a cross site request forgery vulnerability.
PMB versions 5.6 and below suffer from a cross site scripting vulnerability.
Sonar Qube version 8.3.1 suffers from an unquoted service path vulnerability.