Profiling System for Human Resource Management version 1.0 suffers from a remote code execution vulnerability.

Eclipse Mosquitto MQTT broker version 2.0.9 suffers from an unquoted service path vulnerability.

VestaCP version 0.9.8 suffers from a command injection vulnerability.

The controller in SOYAL Biometric Access Control System version 5.0 suffers from a cleartext transmission of sensitive information. This allows interception of the HTTP traffic and disclose the Master code…

The web control panel SOYAL Biometric Access Control System version 5.0 uses a weak set of default administrative credentials (no password) that can be easily guessed in remote password attacks.

SOYAL Biometric Access Control System version 5.0 suffers from a cross site request forgery vulnerability.

SOYAL 701Server version 9.0.1 suffers from an insecure permissions vulnerability.

SOYAL 701Client version 9.0.1 suffers from an insecure permissions vulnerability.

This Metasploit module exploits an unauthenticated log file upload within the log_upload_wsgi.py file of VMWare View Planner 4.6 prior to 4.6 Security Patch 1. Successful exploitation will result in remote…

A vulnerability exists within win32k that can be leveraged by an attacker to escalate privileges to those of NT AUTHORITYSYSTEM. The flaw exists in how the WndExtra field of a…