Karenderia CMS version 5.3 suffers from multiple remote SQL injection vulnerabilities.
>> CATEGORY: exploit
Huawei HG530 suffers from a cross site request forgery vulnerability.
An independent vulnerability laboratory researcher discovered multiple cross site scripting vulnerabilities in the PhpWi…
Symantec DLP versions 15.5 MP1 and below suffer from a cross site scripting vulnerability.
Hawtio versions 2.5.0 and below suffer from a server side request forgery vulnerability.
BKS EBK Ethernet-Buskoppler Pro versions prior to 3.01 suffer from a remote shell upload vulnerability.
Centreon version 19.04 suffers from an authenticated remote code execution vulnerability.
This Metasploit module attempts to gain root privileges on systems running Serv-U FTP Server versions prior to 15.1.7. The Serv-U executable is setuid root, and uses ARGV[0] in a call…
This Metasploit module exploits a vulnerability in Apache Tomcat’s CGIServlet component. When the enableCmdLineArguments setting is set to true, a remote user can abuse this to execute system commands, and…
This Metasploit module exploits a vulnerability within the “ghelp”, “help” and “man” URI handlers within Linux Mint’s “ubuntu-system-adjustments” package. Invoking any one the URI handlers will call the python script…