>> CATEGORY: Security

Nagios Log Server 1.4.1 – Multiple Vulnerabilities

Windows x86 – CreateProcessA cmd.exe Shellcode (253 bytes)

Pi-Hole Web Interface 2.8.1 – Stored XSS in Whitelist/Blacklist

[Turkish] Drupal Coder Vulnerability Analysis & MSF Module Dev

GitLab – “impersonate” Feature Privilege Escalation

Zabbix 2.2.x, 3.0.x – SQL Injection

Samsung Smart Home Camera SNH-P-6410 – Command Injection

Claroline < 1.7.7 – Arbitrary File Inclusion

Easy FTP Server – “APPE” Command Buffer Overflow Remote Exploit

Apache + PHP < 5.3.12 / < 5.4.2 – Remote Code Execution (Multithreaded Scanner) (2)