CouchDB administrative users can configure the database server via HTTP(S). Some of the configuration options include paths for operating system-level binaries that are subsequently launched by CouchDB. This allows an…
>> CATEGORY: exploit
This Metasploit module exploits a remote code execution vulnerability that exists in Exchange Reporter Plus versions 5310 and below, caused by execution of bcp.exe file inside ADSHACluster servlet
Zeta Producer Desktop CMS versions 14.2.0 and below suffers from code execution and file disclosure vulnerabilities.
The vulnerability laboratory core research team discovered a buffer overflow causing a denial of service in the official…
The Vulnerability Laboratory Research Team discovered multiple persistent input validation web vulnerability in the Barr…
The vulnerability laboratory core research team discovered a local buffer overflow vulnerability in the official Lenovo …
…
VLC Media Player version 2.2.8 use-after-free arbitrary code execution proof of concept exploit.
WolfSight CMS version 3.2 suffers from a remote SQL injection vulnerability.
D-Link DIR601 version 2.02 suffers from a credential disclosure vulnerability.