Online Reviewer System version 1.0 remote shell upload exploit that also leverages a remote SQL injection vulnerability that allows for authentication bypass.
Vehicle Parking Tracker System version 1.0 suffers from a persistent cross site scripting vulnerability.
Online Reviewer System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Roundcube Webmail version 1.2 suffers from a file disclosure vulnerability.
Park Ticketing Management System version 1 suffers from a remote SQL injection vulnerability.
Sudo versions prior to 1.9.5p2 suffer from buffer overflow and privilege escalation vulnerabilities.
There is a heap buffer overflow in libgcrypt due to an incorrect assumption in the block buffer management code. Just decrypting some data can overflow a heap buffer with attacker…
This archive contains all of the 231 exploits added to Packet Storm in January, 2021.
Solaris 10 1/13 (SPARC) – ‘dtprintinfo’ Local Privilege Escalation (3)
Solaris 10 1/13 (SPARC) – ‘dtprintinfo’ Local Privilege Escalation (1)