This Metasploit module exploits a flaw in the ‘webexservice’ Windows service, which runs as SYSTEM, can be used to run arbitrary commands locally, and can be started by limited users…
>> CATEGORY: exploit
This Metasploit module uses a valid username and password of any level (or password hash) to execute an arbitrary payload. This Metasploit module is similar to the “psexec” module, except…
School ERP Pro+Responsive version 1.0 suffers from an arbitrary file download vulnerability.
School ERP Pro+Responsive version 1.0 suffers from a remote SQL injection vulnerability.
SIM-PKH version 2.4.1 suffers from a remote SQL injection vulnerability.
SIM-PKH version 2.4.1 suffers from a remote shell upload vulnerability.
ServersCheck Monitoring Software versions up through suffer from arbitrary file write and denial of service vulnerabilities.
Appsource School Management System version 1.0 suffers from a remote SQL injection vulnerability.
Microsoft Active Directory Federated Services (ADFS) suffers from a time-based user enumeration vulnerability.
MGB OpenSource Guestbook version 0.7.0.2 suffers from a remote SQL injection vulnerability.