Plantronics Hub version 3.13.2 suffers from a local privilege escalation vulnerability.
>> CATEGORY: exploit
IceWarp versions 12.2.0 and 12.1.x suffer from a cross site scripting vulnerability.
NextVPN version 4.10 suffers from an insecure file permissions vulnerability.
WordPress Ultimate Addons for Beaver Builder version 1.2.4.1 suffers from an authentication bypass vulnerability.
nostromo version 1.9.6 suffers from a remote code execution vulnerability.
Shopping Portal ProVersion version 3.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
IBM InfoPrint 4247-Z03 Impact Matrix Printer suffers from a directory traversal vulnerability.
Hospital Management System version 4.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
This archive contains all of the 128 exploits added to Packet Storm in December, 2019.
Microsoft Windows suffers from a .group file code execution vulnerability that leverages the URL field.