Dynojet Power Core version 2.3.0 suffers from an unquoted service path vulnerability.
This Metasploit module exploits an arbitrary command execution vulnerability in Ericsson Network Location Mobile Positioning Systems. The export feature in various parts of the application is vulnerable. It is a…
This Metasploit module exploits a privilege escalation vulnerability in Ericsson Network Location Mobile Positioning Systems.
i3 International Annexxus Cameras Ax-n version 5.2.0 does not allow creation of more than one administrator account on the system. This also applies for deletion of the administrative account. The…
Eclipse Jetty 11.0.5 – Sensitive File Disclosure
Fuel CMS 1.4.1 – Remote Code Execution (3)
WordPress Plugin Hotel Listing 3 – ‘Multiple’ Cross-Site Scripting (XSS)
WordPress Plugin Popup Anything 2.0.3 – ‘Multiple’ Stored Cross-Site Scripting (XSS)
PHPJabbers Simple CMS 5 – ‘name’ Persistent Cross-Site Scripting (XSS)
Ultimate POS 4.4 – ‘name’ Cross-Site Scripting (XSS)