>> CATEGORY: exploit

Trojan-Ransom.Win32.Hive.bv malware suffers from a code execution vulnerability.

Online Employee Leave Management System version 1.0 suffers from a cross site request forgery vulnerability.

Wifi HD Wireless Disk Drive version 11 suffers from a local file inclusion vulnerability.

This is a proof of concept exploit for the Apple macOS remote events remote memory corruption vulnerability. It serves as a toolkit to help debug and trigger crashes.

Mobile Mouse version 3.6.0.4 suffers from a remote code execution vulnerability.

Online Market Place Site version 1.0 suffers from an unauthenticated blind SQL injection vulnerability allowing remote attackers to dump the SQL database via time-based SQL injection.

Online Market Place Site version 1.0 suffers from a persistent cross site scripting vulnerability.

This Metasploit module exploits an authenticated command injection vulnerability affecting Cisco ASA-X with FirePOWER Services. This exploit is executed through the ASA’s ASDM web server and lands in the FirePower…

WordPress Netroics Blog Posts Grid plugin version 1.0 suffers from a persistent cross site scripting vulnerability.

Doctor’s Appointment System version 1.0 suffers from a cross site scripting vulnerability in register.php. Original discovery of cross site scripting in this version is attributed to Soham Bakore in February…