TP-LINK Cloud Cameras including products NC260 and NC450 suffer from a command injection vulnerability. The issue is located in the httpSetEncryptKeyRpm method (handler for /setEncryptKey.fcgi) of the ipcamera binary, where…

FlashGet version 1.9.6 remote buffer overflow proof of concept exploit.

iJoomla AdAgency component version 6.0.9 suffers from a remote SQL injection vulnerability.

BlogEngine version 3.3 suffers from an XML external entity injection vulnerability.

osTicket version 1.14.1 suffers from a persistent cross site scripting vulnerability.

Fishing Reservation System suffers from multiple remote SQL injection vulnerabilities.

BoltWire version 6.03 suffers from a local file inclusion vulnerability.

This Metasploit module is an exploit that takes advantage of xglance-bin, part of HP’s Glance (or Performance Monitoring) version 11 and subsequent, which was compiled with an insecure RPATH option….

This Metasploit module exploits a .NET deserialization vulnerability in the Veeam ONE Agent before the hotfix versions 9.5.5.4587 and 10.0.1.750 in the 9 and 10 release lines. Specifically, the module…

Outline Service version 1.3.3 suffers from an unquoted service path vulnerability.