Microsoft Windows can dupe users into trusting executables with DLL hijacking and privilege escalation issues.
Backdoor.Win32.Agent.oj malware suffers from a code execution vulnerability.
Piwigo version 11.3.0 suffers from a remote SQL injection vulnerability.
OX App Suite versions 7.10.4 and below suffer from cross site scripting and server-side request forgery vulnerabilities. OX Guard versions 2.10.4 and below suffer from a denial of service vulnerability.
This Metasploit module abuses a known default password on Micro Focus Operations Bridge Reporter. The shrboadmin user, installed by default by the product has the password of shrboadmin, and allows…
This Metasploit module exploits a command injection vulnerability on login that affects Micro Focus Operations Bridge Reporter on Linux, versions 10.40 and below. It is a straight up command injection,…
Fog Project version 1.5.9 suffers from a remote shell upload vulnerability.
Cacti version 1.2.12 remote code execution exploit that leverages a remote SQL vulnerability.
NodeBB Emoji plugin version 3.2.1 suffers from an arbitrary file write vulnerability.
Moodle 3.6.1 – Persistent Cross-Site Scripting (XSS)