Aimeos Laravel ecommerce platform 2021.10 LTS – ‘sort’ SQL injection
Aimeos Laravel ecommerce platform 2021.10 LTS – ‘sort’ SQL injection
Modbus Slave 7.3.1 – Buffer Overflow (DoS)
Pinkie 2.15 – TFTP Remote Buffer Overflow (PoC)
This Metasploit module exploits an unauthenticated command injection vulnerability within the Nimbus service component of Apache Storm. The getTopologyHistory RPC method method takes a single argument which is the name…
Linux suffered from a use-after-free read vulnerability related to an SO_PEERCRED and SO_PEERGROUPS race with listen() (and connect()). This has been addressed in stable versions 5.14.10, 5.10.71, 5.4.151, 4.19.209, 4.14.249,…
Bludit version 3.13.1 suffers from a cross site scripting vulnerability.
Quick.CMS version 6.7 suffers from a cross site scripting vulnerability that can allow for cross site request forgery attacks.
GitLab version 13.10.2 remote code execution exploit that provides a reverse shell.
LiquidFiles version 3.5.13 suffers from a privilege escalation vulnerability. The LiquidFiles API allows a User Admin to access keys for System Administrators.