Multix version 2.4 suffers from a cross site scripting vulnerability.
>> CATEGORY: exploit
Multix version 2.4 suffers from a cross site scripting vulnerability.
Multix version 2.4 suffers from a cross site request forgery vulnerability.
WorkOrder CMS version 0.1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
WorkOrder CMS version 0.1.0 suffers from a cross site scripting vulnerability.
Linux stable versions 5.4 and 5.10 suffers from a page use-after-free via stale TLB caused by an rmap lock not held during PUD move.
Various versions of Bitbucket Server and Data Center are vulnerable to an unauthenticated command injection vulnerability in multiple API endpoints. The /rest/api/latest/projects/{projectKey}/repos/{repositorySlug}/archive endpoint creates an archive of the repository, leveraging…
WiFiMouse version 1.8.3.4 suffers from a remote code execution vulnerability.
This Metasploit module utilizes the Unified Remote remote control protocol to type out and deploy a payload. The remote control protocol can be configured to have no passwords, a group…
Trojan-Dropper.Win32.Corty.10 malware suffers from an insecure credential storage vulnerability.
Bookwyrm versions 0.4.3 and below suffer from an authentication bypass vulnerability due to a lack of rate limiting on OTP checks.