IBM Websphere Application Server version 7.0 persistent cross site scripting vulnerability proof of concept details.
>> CATEGORY: exploit
Backdoor.Win32.Delf.gj malware suffers from an information leakage vulnerability.
This archive contains all of the 69 exploits added to Packet Storm in November, 2022.
Hirschmann (Belden) BAT-C2 version 8.8.1.0R8 suffers from a remote authenticated command injection vulnerability.
OX App Suite versions 7.10.6 and below suffer from cross site scripting, server-side request forgery, and resource exhaustion vulnerabilities.
This Metasploit module chains two vulnerabilities on Microsoft Exchange Server that, when combined, allow an authenticated attacker to interact with the Exchange Powershell backend (CVE-2022-41040), where a deserialization flaw can…
perfSONAR bundles with it a graphData.cgi script, used to graph and visualize data. There is a flaw in graphData.cgi allowing for unauthenticated users to proxy and relay HTTP/HTTPS traffic through…
A partial blind cross site request forgery (CSRF) vulnerability exists in perfSONAR versions 4.x through 4.4.5 within the /perfsonar-graphs/ test results page. Parameters and values can be injected/passed via the…
Concrete CMS version 9.1.3 suffers from an XPATH injection vulnerability.