An unauthenticated attacker with network access to the Oracle Weblogic Server T3 interface can send a serialized object (sun.rmi.server.UnicastRef) to the interface to execute code on vulnerable hosts.
>> CATEGORY: exploit
phpFileManager version 1.7.8 suffers from a local file inclusion vulnerability.
This archive contains all of the 205 exploits added to Packet Storm in March, 2019.
WordPress Feed Statistics plugin version 4.1 suffers from an open redirection vulnerability.
Classified Ad Lister version 2.0 suffers from an arbitrary file upload vulnerability.
SphereFTP server version 2.0 suffers from a remote denial of service vulnerability.
Zeuscart version 3.0 appears to suffer from a user detail information disclosure vulnerability.
zipperSNAP version 7.0.28 suffers from a directory traversal vulnerability.
zipperSNAP version 7.0.28 suffers from a cross site scripting vulnerability.
zStore version 1.10 suffers from a cross site scripting vulnerability.