>> CATEGORY: exploit

10Strike LANState version 9.32 on x86 Host Check hostname SEH buffer overflow exploit.

This archive contains all of the 150 exploits added to Packet Storm in March, 2020.

Grandstream UCM6200 Series WebSocket versions 1.0.20.20 and below suffer from a remote SQL injection vulnerability.

Grandstream UCM6200 Series CTI Interface versions 1.0.20.20 and below suffer from a remote SQL injection vulnerability.

DrayTek Vigor2960 version 1.3.1_Beta, Vigor3900 version 1.4.4_Beta, and Vigor300B versions 1.3.3_Beta, 1.4.2.1_Beta, and 1.4.4_Beta suffer from a remote command execution vulnerability.

FlashFXP version 4.2.0 build 1730 denial of service proof of concept exploit.

Microsoft Windows 10 SMB version 3.1.1 SMBGhost local privilege escalation exploit.

Odin Secure FTP Expert version 7.6.3 Site Info denial of service proof of concept exploit.

DesignMasterEvents CMS version 1.0 suffers from cross site scripting and remote SQL injection vulnerabilities.

WordPress Event-Registration plugin version 5.43 suffers from an arbitrary file upload vulnerability.