Exploits & CVE's

Authored by Andrei Manole SmarterTools SmarterTrack 7922 suffers from an information disclosure vulnerability. Change Mirror Download # Exploit Title: SmarterTools SmarterTrack 7922 - 'Multiple' Information Disclosure # Google Dork: intext:"Powered by SmarterTrack"#...

Authored by Sylvain Heiniger, Emanuel Duss OpenVPN Monitor versions 1.1.3 and below suffer from an authorization bypass vulnerability that allows an attacker to disconnect arbitrary clients, even if the disconnect...

Authored by Sylvain Heiniger, Emanuel Duss OpenVPN Monitor versions 1.1.3 and below suffer from an injection vulnerability that allows an attacker to inject arbitrary commands into the OpenVPN server management...

Authored by Sylvain Heiniger, Emanuel Duss OpenVPN Monitor versions 1.1.3 and below suffer from a cross site request forgery vulnerability that allows an attacker to disconnect arbitrary VPN clients. advisories |...

Authored by Jake Ruston OpenCats version 0.9.4-2 suffers from an XML external entity injection vulnerability. advisories | CVE-2019-13358 Change Mirror Download # Exploit Title: OpenCats 0.9.4-2 - 'docx ' XML External Entity Injection...

Authored by Google Security Research, Glazvunov Chrome suffers from a HRTFDatabaseLoader::WaitForLoaderThreadCompletion data race condition. advisories | CVE-2021-30603

Authored by JohnJHacking, Sick Codes Gurock Testrail version 7.2.0.3014 suffers from an improper access control vulnerability. advisories | CVE-2021-40875 Change Mirror Download # Exploit Title: Gurock Testrail 7.2.0.3014 - 'files.md5' Improper Access Control#...

Authored by V1n1v131r4 Backdrop CMS version 1.20.0 suffers from cross site request forgery vulnerabilities that can assist an attacker in achieving command execution. Change Mirror Download # Exploit Title: Backdrop CMS 1.20.0...

Authored by Andrea Intilangelo TotalAV version 5.15.69 suffers from an unquoted service path vulnerability. advisories | CVE-2021-35313 Change Mirror Download # Exploit Title: TotalAV - Unquoted Service Path# Date: 2021-09-22# Exploit Author: Andrea...

Authored by syntegris Information solutions GmbH, Christian P Filerun version 2021.03.26 authenticated remote code execution exploit. Change Mirror Download # Exploit Title: Filerun 2021.03.26 - Remote Code Execution (RCE) (Authenticated)# Date: 09/21/2021#...