Clik here to view.
Unitrends UEB 9 - http api/storage Remote Root (Metasploit)
EDB-ID: 43030Author: MetasploitPublished: 2017-10-23CVE: CVE-2017-12478 Type: RemotePlatform: Lin_x86Aliases: N/AAdvisory/Source: LinkTags: Metasploit FrameworkVulnerable App: N/A # This module...
View ArticleClik here to view.
Polycom - Command Shell Authorization Bypass (Metasploit)
EDB-ID: 43032Author: MetasploitPublished: 2017-10-23CVE: N/A Type: RemotePlatform: UnixAliases: N/AAdvisory/Source: LinkTags: Metasploit FrameworkVulnerable App: N/A # This module requires Metasploit:...
View ArticleClik here to view.
Unitrends UEB 9 - bpserverd Authentication Bypass Remote Command Execution...
EDB-ID: 43031Author: MetasploitPublished: 2017-10-23CVE: CVE-2017-12477 Type: RemotePlatform: Lin_x86Aliases: N/AAdvisory/Source: LinkTags: Metasploit FrameworkVulnerable App: N/A # This module...
View ArticleClik here to view.
Mikogo 5.4.1.160608 Local Credentials Disclosure
Mikogo version 5.4.1.160608 is vulnerable to local credential disclosure. The supplied password is stored as a MD5 hash format in memory. A potential attacker could reveal the supplied password hash...
View ArticleClik here to view.
Tuleap 9.6 Second-Order PHP Object Injection
Tuleap versions 9.6 and below suffer from a second order PHP object injection vulnerability.MD5 |...
View ArticleClik here to view.
Mikogo 5.4.1.160608 - Local Credentials Disclosure
EDB-ID: 43033Author: LiquidWormPublished: 2017-10-23CVE: N/A Type: LocalPlatform: WindowsVulnerable App: N/A # # # Mikogo 5.4.1.160608 Local Credentials Disclosure # # # Vendor: Snapview GmbH # Product...
View ArticleClik here to view.
FS Amazon Clone - 'category_id' Parameter SQL Injection
EDB-ID: 43035Author: 8bitsecPublished: 2017-10-23CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 2017-10-23 # Exploit Author: 8bitsec # Vendor Homepage: https://fortunescripts.com/ #...
View ArticleClik here to view.
FS Book Store Script - 'category' Parameter SQL Injection
EDB-ID: 43036Author: 8bitsecPublished: 2017-10-23CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 2017-10-23 # Exploit Author: 8bitsec # Vendor Homepage: https://fortunescripts.com/ #...
View ArticleClik here to view.
FS Car Rental Script - 'pickup_location' Parameter SQL Injection
EDB-ID: 43034Author: 8bitsecPublished: 2017-10-23CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 2017-10-23 # Exploit Author: 8bitsec # Vendor Homepage: https://fortunescripts.com/ #...
View ArticleClik here to view.
FS OLX Clone - 'catg_id' Parameter SQL Injection
EDB-ID: 43044Author: 8bitsecPublished: 2017-10-23CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 2017-10-23 # Exploit Author: 8bitsec # Vendor Homepage: https://fortunescripts.com/ #...
View ArticleClik here to view.
FS Expedia Clone - 'hid' Parameter SQL Injection
EDB-ID: 43039Author: 8bitsecPublished: 2017-10-23CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 2017-10-23 # Exploit Author: 8bitsec # Vendor Homepage: https://fortunescripts.com/ #...
View ArticleClik here to view.
FS Indiamart Clone - 'keywords' Parameter SQL Injection
EDB-ID: 43042Author: 8bitsecPublished: 2017-10-23CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 2017-10-23 # Exploit Author: 8bitsec # Vendor Homepage: https://fortunescripts.com/ #...
View ArticleClik here to view.
FS Groupon Clone - 'category' Parameter SQL Injection
EDB-ID: 43041Author: 8bitsecPublished: 2017-10-23CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 2017-10-23 # Exploit Author: 8bitsec # Vendor Homepage: https://fortunescripts.com/ #...
View ArticleClik here to view.
FS Ebay Clone - 'pd_maincat_id' Parameter SQL Injection
EDB-ID: 43037Author: 8bitsecPublished: 2017-10-23CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 2017-10-23 # Exploit Author: 8bitsec # Vendor Homepage: https://fortunescripts.com/ #...
View ArticleClik here to view.
FS Lynda Clone - 'category' Parameter SQL Injection
EDB-ID: 43043Author: 8bitsecPublished: 2017-10-23CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 2017-10-23 # Exploit Author: 8bitsec # Vendor Homepage: https://fortunescripts.com/ #...
View ArticleClik here to view.
FS Food Delivery Script - 'keywords' Parameter SQL Injection
EDB-ID: 43038Author: 8bitsecPublished: 2017-10-23CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 2017-10-23 # Exploit Author: 8bitsec # Vendor Homepage: https://fortunescripts.com/ #...
View ArticleClik here to view.
FS Freelancer Clone - 'sk' Parameter SQL Injection
EDB-ID: 43040Author: 8bitsecPublished: 2017-10-23CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 2017-10-23 # Exploit Author: 8bitsec # Vendor Homepage: https://fortunescripts.com/ #...
View ArticleClik here to view.
Jenkins Global Build Stats Plugin Multiple Security Vulnerabilities
Global Build Stats Plugin for Jenkins is prone to multiple security vulnerabilities. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in...
View ArticleClik here to view.
Jenkins Active Choices Plugin HTML Injection Vulnerability
Active Choices Plugin for Jenkins is prone to an HTML-injection vulnerability because it fails to properly sanitize user-supplied input. Successful exploits will result in the execution of arbitrary...
View ArticleClik here to view.
TYPO3 Core TYPO3-SA-2010-012 Multiple Remote Security Vulnerabilities
TYPO3 is prone to multiple remote vulnerabilities, including: Cross site scripting vulnerabilities Authentication-bypass vulnerabilities Information-disclosure vulnerabilities SQL-injection...
View Article