DynoRoot DHCP suffers from a client command injection vulnerability.
>> CATEGORY: exploit
DynoRoot DHCP suffers from a client command injection vulnerability.
SAP B2B / B2C CRM versions 2.x up to 4.x suffer from a local file inclusion vulnerability.
Healwire Online Pharmacy version 3.0 suffers from cross site request forgery and cross site scripting vulnerabilities.
This Metasploit module exploits an expression language injection vulnerability, along with an authentication bypass vulnerability in Hewlett Packard Enterprise Intelligent Management Center before version 7.3 E0504P04 to achieve remote code…
This Metasploit module exploits a vulnerability in the rds_page_copy_user function in net/rds/page.c (RDS) in Linux kernel versions 2.6.30 to 2.6.36-rc8 to execute code as root (CVE-2010-3904). This Metasploit module has…
Chakra uses the InvariantBlockBackwardIterator class to backpropagate the information about the hoisted bound checks. But the class follows the linked list instead of the control flow. This may lead to…
Linux suffers from a 4-byte information leak via an uninitialized struct field in the compat adjtimex syscall.
NodAPS version 4.0 suffers from cross site request forgery and remote SQL injection vulnerabilities.
SuperCom Online Shopping Ecommerce Cart 1 suffers from remote SQL injection, cross site request forgery, and cross site scripting vulnerabilities.
Powerlogic/Schneider Electric IONXXXX Series suffers from a cross site request forgery vulnerability.