Exploits & CVE's

Authored by LiquidWorm | Site zeroscience.mk Elber Wayber Analog/Digital Audio STL version 4.00 suffers from an authentication bypass vulnerability through a direct and unauthorized access to the password management functionality....

Authored by LiquidWorm | Site zeroscience.mk Elber Wayber Analog/Digital Audio STL version 4.00 suffers from an unauthenticated device configuration and client-side hidden functionality disclosure vulnerability. Change Mirror Download Elber Wayber Analog/Digital Audio...

Authored by trancap BMC Compuware iStrobe Web version 20.13 suffers from a remote shell upload vulnerability. advisories | CVE-2023-40304 Change Mirror Download #!/usr/bin/env python3# Exploit Title: Pre-auth RCE on Compuware iStrobe Web# Date:...

Authored by Erdemstar WordPress WP Video Playlist plugin version 1.1.1 suffers from a persistent cross site scripting vulnerability. Change Mirror Download # Exploit Title: Wordpress Plugin WP Video Playlist 1.1.1 - Stored...

Authored by V3locidad GLPI versions 10.x.x suffers from a remote command execution vulnerability via the shell commands plugin. advisories | CVE-2024-31705

Authored by Christophe de la Fuente, Ryan Emmons | Site metasploit.com This Metasploit exploit module leverages an improperly controlled modification of dynamically-determined object attributes vulnerability (CVE-2023-43177) to achieve unauthenticated remote...

Authored by Michael Werner | Site sec-consult.com The password of database connections in AWS Glue is loaded into the website when a connection's edit page is requested. Principals with appropriate...

Authored by malvuln | Site malvuln.com Backdoor.Win32.Dumador.c malware suffers from a buffer overflow vulnerability. Change Mirror Download Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2024Original source: https://malvuln.com/advisory/6cc630843cabf23621375830df474bc5.txtContact: [email protected]: twitter.com/malvulnThreat: Backdoor.Win32.Dumador.cVulnerability:...

Authored by Cody Sixteen | Site code610.blogspot.com Centreon version 23.10-1.el8 suffers from a remote authenticated SQL injection vulnerability. Change Mirror Download ;; Postauth SQL Injection in Centreon 23.10-1.el8;; by code610;; ;; found...

Authored by Spencer McIntyre, Abdel Adim Oisfi, Davide Silvetti | Site metasploit.com pgAdmin versions 8.3 and below have a path traversal vulnerability within their session management logic that can allow...