VMWare vCloud Director version 9.7.0.15498291 suffers from a remote code execution vulnerability.
CAYIN xPost version 2.5 suffers from an unauthenticated SQL injection vulnerability. Input passed via the GET parameter wayfinder_seqid in wayfinder_meeting_input.jsp is not properly sanitised before being returned to the user…
This Metasploit module exploits a Java object deserialization vulnerability in multiple versions of WebLogic. Unauthenticated remote code execution can be achieved by sending a serialized BadAttributeValueExpException object over the T3…
This Metasploit module exploits a file upload feature of Drag and Drop Multi File Upload – Contact Form 7 for versions prior to 1.3.4. The allowed file extension list can…
Online-Exam-System 2015 – ‘feedback’ SQL Injection
Online Course Registration 1.0 – Authentication Bypass
Clinic Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
vCloud Director version 9.7.0.15498291 suffers from a remote code execution vulnerability.
OpenCart version 3.0.3.2 suffers from a persistent cross site scripting vulnerability.
This archive holds Bluetooth Impersonation Attack (BIAS) CVE-2020-10135 proof of concept and reproduction research from multiple researchers.