HALO 2.13.1 CORS Issue
Authored by nu11secur1ty
HALO version 2.13.1 has an insecure cross-origin resource sharing setting that allows an arbitrary origin.
Change Mirror Download
## Title: HALO-2.13.1 Cross-origin resource sharing: arbitrary origin trusted## Author: nu11secur1ty##...
Financials By Coda Cross Site Scripting
Authored by Leo Draghi
Financials by Coda versions prior to 2023Q4 suffer from a cross site scripting vulnerability.
advisories | CVE-2024-28734
Change Mirror Download
# Vulnerability type: Cross-site Scripting# Vendor: https://www.unit4.com/# Product: Financials...
Financials By Coda Authorization Bypass
Authored by Leo Draghi
Financials by Coda versions prior to 2023Q4 suffer from an incorrect access control authorization bypass vulnerability. The Change Password feature can be abused in order to...
vm2 3.9.19 Sandbox Escape
Authored by Calil Khalil, Adriel Mc Roberts
vm2 versions 3.9.19 and below suffer from a sandbox escape vulnerability.
advisories | CVE-2023-37466
Change Mirror Download
/*# Exploit Title: vm2 Sandbox Escape vulnerability# Date: 23/12/2023#...
Nokia BMC Log Scanner 13 Command Injection
Authored by Matthew Gregory, Carlos Andres Gonzalez
Nokia BMC Log Scanner version 13 suffers from a remote command injection vulnerability.
advisories | CVE-2022-45899
Change Mirror Download
# Exploit Title: Nokia BMC Log Scanner...
Gasmark Pro 1.0 Shell Upload
Authored by nu11secur1ty
Gasmark Pro version 1.0 suffers from a remote shell upload vulnerability.
Change Mirror Download
## Title: GASMARK PRO-1.0 File Upload RCE## Author: nu11secur1ty## Date: 03/17/2024## Vendor: https://www.mayurik.com/## Software: https://www.sourcecodester.com/php/15586/gas-agency-management-system-project-php-free-download-source-code.html##...
UPS Network Management Card 4 Path Traversal
Authored by Victor Garcia
UPS Network Management Card version 4 suffers from a path traversal vulnerability.
Change Mirror Download
# Exploit Title: UPS Network Management Card 4 - Path Traversal# Google Dork:...
dav1d Integer Overflow / Out-Of-Bounds Write
Authored by Ivan Fratric, Google Security Research, Nick Galloway
There is an integer overflow in dav1d when decoding an AV1 video with large width/height. The integer overflow may result in...
StimulusReflex 3.5.0 Arbitrary Code Execution
Authored by lixts
StimulusReflex versions 3.5.0 up to and including 3.5.0.rc2 and 3.5.0.pre10 suffer from an arbitrary code execution vulnerability.
advisories | CVE-2024-28121
Change Mirror Download
StimulusReflex CVE-2024-28121Arbitrary code execution in StimulusReflex. This...
Backdoor.Win32.Emegrab.b MVID-2024-0675 Buffer Overflow
Authored by malvuln | Site malvuln.com
Backdoor.Win32.Emegrab.b malware suffers from a buffer overflow vulnerability.
Change Mirror Download
Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2024Original source: https://malvuln.com/advisory/19a14d0414aec62ef38378de2e8b259d.txtContact: [email protected]: twitter.com/malvulnThreat: Backdoor.Win32.Emegrab.bVulnerability:...