>> CATEGORY: exploit

This Metasploit module exploits a remote code execution vulnerability found in GetSimpleCMS versions 3.3.15 and below. An arbitrary file upload (PHPcode for example) vulnerability can be triggered by an authenticated…

Tomabo MP4 Converter version 3.25.22 denial of service proof of concept exploit.

CommSy version 8.6.5 suffers from a remote SQL injection vulnerability.

DeepSound version 1.0.4 suffers from a remote SQL injection vulnerability.

Legrand BTicino Driver Manager F454 version 1.0.51 suffers from a cross site scripting vulnerability.

Legrand BTicino Driver Manager F454 version 1.0.51 suffers from a cross site request forgery vulnerability.

RSA NetWitness versions prior to 10.6.6.1 and 11.2.1.1 suffer from an issue where an unauthorized attacker can access an administrative resource that may contain plain text credentials to a 3rd…

Telenor.com.pk appears to allow an attacker set an arbitrary phone number for receiving an SMS for the second factor of authentication.

Selfie Studio version 2.17 Resize Image denial of service proof of concept exploit.

Three different proof of concept exploits for TwistedBrush Pro Studio version 24.06 denial of service vulnerabilities.