Security Vulnerabilities & Exploits

[webapps] Online Motorcycle (Bike) Rental System 1.0 - Blind Time-Based SQL Injection (Unauthenticated)

The Exploit Database - 19 Říjen, 2021 - 02:00
Online Motorcycle (Bike) Rental System 1.0 - Blind Time-Based SQL Injection (Unauthenticated)

[webapps] myfactory FMS 7.1-911 - 'Multiple' Reflected Cross-Site Scripting (XSS)

The Exploit Database - 19 Říjen, 2021 - 02:00
myfactory FMS 7.1-911 - 'Multiple' Reflected Cross-Site Scripting (XSS)

[webapps] WordPress Theme Enfold 4.8.3 - Reflected Cross-Site Scripting (XSS)

The Exploit Database - 19 Říjen, 2021 - 02:00
WordPress Theme Enfold 4.8.3 - Reflected Cross-Site Scripting (XSS)

[webapps] Plastic SCM 10.0.16.5622 - WebAdmin Server Access

The Exploit Database - 18 Říjen, 2021 - 02:00
Plastic SCM 10.0.16.5622 - WebAdmin Server Access

[webapps] Company's Recruitment Management System 1.0 - 'Add New user' Cross-Site Request Forgery (CSRF)

The Exploit Database - 18 Říjen, 2021 - 02:00
Company's Recruitment Management System 1.0 - 'Add New user' Cross-Site Request Forgery (CSRF)

[webapps] Company's Recruitment Management System 1.0 - 'description' Stored Cross-Site Scripting (XSS)

The Exploit Database - 18 Říjen, 2021 - 02:00
Company's Recruitment Management System 1.0 - 'description' Stored Cross-Site Scripting (XSS)

[webapps] Mitsubishi Electric & INEA SmartRTU - Reflected Cross-Site Scripting (XSS)

The Exploit Database - 18 Říjen, 2021 - 02:00
Mitsubishi Electric & INEA SmartRTU - Reflected Cross-Site Scripting (XSS)

[webapps] Mitsubishi Electric & INEA SmartRTU - Source Code Disclosure

The Exploit Database - 18 Říjen, 2021 - 02:00
Mitsubishi Electric & INEA SmartRTU - Source Code Disclosure

[webapps] Company's Recruitment Management System 1.0. - 'title' Stored Cross-Site Scripting (XSS)

The Exploit Database - 18 Říjen, 2021 - 02:00
Company's Recruitment Management System 1.0. - 'title' Stored Cross-Site Scripting (XSS)

[webapps] Wordpress Plugin Duplicator 1.3.26 - Unauthenticated Arbitrary File Read

The Exploit Database - 18 Říjen, 2021 - 02:00
Wordpress Plugin Duplicator 1.3.26 - Unauthenticated Arbitrary File Read

[webapps] Support Board 3.3.4 - 'Message' Stored Cross-Site Scripting (XSS)

The Exploit Database - 18 Říjen, 2021 - 02:00
Support Board 3.3.4 - 'Message' Stored Cross-Site Scripting (XSS)

DSA-4989 strongswan

Debian.org [Security] - 18 Říjen, 2021 - 00:00
security update

[webapps] i-Panel Administration System 2.0 - Reflected Cross-site Scripting (XSS)

The Exploit Database - 15 Říjen, 2021 - 02:00
i-Panel Administration System 2.0 - Reflected Cross-site Scripting (XSS)

[local] SolarWinds Kiwi CatTools 3.11.8 - Unquoted Service Path

The Exploit Database - 14 Říjen, 2021 - 02:00
SolarWinds Kiwi CatTools 3.11.8 - Unquoted Service Path

[webapps] TextPattern CMS 4.8.7 - Remote Command Execution (RCE) (Authenticated)

The Exploit Database - 14 Říjen, 2021 - 02:00
TextPattern CMS 4.8.7 - Remote Command Execution (RCE) (Authenticated)

DSA-4986 tomcat9

Debian.org [Security] - 14 Říjen, 2021 - 00:00
security update

DSA-4985 wordpress

Debian.org [Security] - 14 Říjen, 2021 - 00:00
security update

[webapps] Sonicwall SonicOS 7.0 - Host Header Injection

The Exploit Database - 13 Říjen, 2021 - 02:00
Sonicwall SonicOS 7.0 - Host Header Injection
Syndikovat obsah