Zoho ManageEngine ServiceDesk Plus version 9.3 suffers from multiple cross site scripting vulnerabilities.
Google Chrome suffers from a use-after-free vulnerability in WasmMemoryObject::Grow.
This Metasploit module exploits a command injection vulnerability in the open source network management software known as LibreNMS. The community parameter used in a POST request to the addhost functionality…
This Metasploit module exploits untrusted serialized data processed by the WAS DMGR Server and Cells in the IBM Websphere Application Server. NOTE: There is a required 2 minute timeout between…
Exim 4.87 < 4.91 – (Local / Remote) Command Execution
Google Chrome 73.0.3683.103 – ‘WasmMemoryObject::Grow’ Use-After-Free
Zimbra < 8.8.11 – XML External Entity Injection / Server-Side Request Forgery
LibreNMS – addhost Command Injection (Metasploit)
IBM Websphere Application Server – Network Deployment Untrusted Data Deserialization Remote Code Execution (Metasploit)
Vim < 8.1.1365 / Neovim < 0.3.6 – Arbitrary Code Execution