Agregátor RSS

[webapps] Social-Share-Buttons v2.2.3 - SQL Injection

The Exploit Database - 28 Březen, 2023 - 02:00
Social-Share-Buttons v2.2.3 - SQL Injection

[webapps] Moodle LMS 4.0 - Cross-Site Scripting (XSS)

The Exploit Database - 28 Březen, 2023 - 02:00
Moodle LMS 4.0 - Cross-Site Scripting (XSS)

[dos] Tunnel Interface Driver - Denial of Service

The Exploit Database - 28 Březen, 2023 - 02:00
Tunnel Interface Driver - Denial of Service

[webapps] OPSWAT Metadefender Core - Privilege Escalation

The Exploit Database - 28 Březen, 2023 - 02:00
OPSWAT Metadefender Core - Privilege Escalation

[webapps] ZKTeco ZEM/ZMM 8.88 - Missing Authentication

The Exploit Database - 28 Březen, 2023 - 02:00
ZKTeco ZEM/ZMM 8.88 - Missing Authentication

[remote] X-Skipper-Proxy v0.13.237 - Server Side Request Forgery (SSRF)

The Exploit Database - 28 Březen, 2023 - 02:00
X-Skipper-Proxy v0.13.237 - Server Side Request Forgery (SSRF)

[webapps] Subrion CMS 4.2.1 - Stored Cross-Site Scripting (XSS)

The Exploit Database - 28 Březen, 2023 - 02:00
Subrion CMS 4.2.1 - Stored Cross-Site Scripting (XSS)

[webapps] Label Studio 1.5.0 - Authenticated Server Side Request Forgery (SSRF)

The Exploit Database - 28 Březen, 2023 - 02:00
Label Studio 1.5.0 - Authenticated Server Side Request Forgery (SSRF)

[webapps] BoxBilling<=4.22.1.5 - Remote Code Execution (RCE)

The Exploit Database - 28 Březen, 2023 - 02:00
BoxBilling<=4.22.1.5 - Remote Code Execution (RCE)

[remote] Tapo C310 RTSP server v1.3.0 - Unauthorised Video Stream Access

The Exploit Database - 28 Březen, 2023 - 02:00
Tapo C310 RTSP server v1.3.0 - Unauthorised Video Stream Access

[local] SugarSync 4.1.3 - 'SugarSync Service' Unquoted Service Path

The Exploit Database - 28 Březen, 2023 - 02:00
SugarSync 4.1.3 - 'SugarSync Service' Unquoted Service Path

[local] HDD Health 4.2.0.112 - 'HDDHealth' Unquoted Service Path

The Exploit Database - 28 Březen, 2023 - 02:00
HDD Health 4.2.0.112 - 'HDDHealth' Unquoted Service Path

[webapps] Jetpack 11.4 - Cross Site Scripting (XSS)

The Exploit Database - 28 Březen, 2023 - 02:00
Jetpack 11.4 - Cross Site Scripting (XSS)

[webapps] Online shopping system advanced 1.0 - Multiple Vulnerabilities

The Exploit Database - 28 Březen, 2023 - 02:00
Online shopping system advanced 1.0 - Multiple Vulnerabilities

[dos] SuperMailer v11.20 - Buffer overflow DoS

The Exploit Database - 28 Březen, 2023 - 02:00
SuperMailer v11.20 - Buffer overflow DoS

[webapps] YouPHPTube<= 7.8 - Multiple Vulnerabilities

The Exploit Database - 28 Březen, 2023 - 02:00
YouPHPTube<= 7.8 - Multiple Vulnerabilities

[dos] VMware Workstation 15 Pro - Denial of Service

The Exploit Database - 28 Březen, 2023 - 02:00
VMware Workstation 15 Pro - Denial of Service

[webapps] Pega Platform 8.1.0 - Remote Code Execution (RCE)

The Exploit Database - 28 Březen, 2023 - 02:00
Pega Platform 8.1.0 - Remote Code Execution (RCE)

[webapps] Beauty-salon v1.0 - Remote Code Execution (RCE)

The Exploit Database - 28 Březen, 2023 - 02:00
Beauty-salon v1.0 - Remote Code Execution (RCE)

Lawyers cough up $200k after health data stolen in Microsoft Exchange pillaging

The Register - Anti-Virus - 28 Březen, 2023 - 00:45
In addition to $100k given to LockBit

New York law firm Heidell, Pittoni, Murphy and Bach (HPMB) has agreed to pay $200,000 to settle a data-breach lawsuit related to the now-notorious Hafnium Microsoft Exchange attacks that siphoned sensitive data from victims around the world. …

Kategorie: Viry a Červi
Syndikovat obsah