KevinLAB BEMS 1.0 Undocumented Backdoor Account
Authored by LiquidWorm | Site zeroscience.mk
KevinLAB BEMS version 1.0 has an undocumented backdoor account and the sets of credentials are never exposed to the end-user and cannot be changed...
KevinLAB BEMS 1.0 Unauthenticated SQL Injection / Authentication Bypass
Authored by LiquidWorm | Site zeroscience.mk
KevinLAB BEMS version 1.0 suffers from an unauthenticated SQL Injection vulnerability. Input passed through input_id POST parameter in /http/index.php is not properly sanitized before...
HEUR.Backdoor.Win32.Winnti.gen Insecure Permissions
Authored by malvuln | Site malvuln.com
HEUR.Backdoor.Win32.Winnti.gen malware suffers from an insecure permissions vulnerability.
Change Mirror Download
Discovery / credits: Malvuln - malvuln.com (c) 2021Original source: https://malvuln.com/advisory/eb272fe923ccf3e66fde1bf309cbc464.txtContact: [email protected]: twitter.com/malvulnThreat: HEUR.Backdoor.Win32.Winnti.genVulnerability: Insecure PermissionsDescription:...
WordPress LearnPress SQL Injection
Authored by nhattruong
WordPress LearnPress plugin versions prior to 3.2.6.8 suffer from a remote time-based blind SQL injection vulnerability.
advisories | CVE-2020-6010
Change Mirror Download
# Exploit Title: WordPress Plugin LearnPress < 3.2.6.8...
WordPress LearnPress Privilege Escalation
Authored by nhattruong
WordPress LearnPress plugin versions prior to 3.2.6.9 suffer from a privilege escalation vulnerability.
advisories | CVE-2020-11511
Change Mirror Download
# Exploit Title: WordPress Plugin LearnPress < 3.2.6.9 - User Registration...
Backdoor.Win32.Agent.bjev Insecure Permissions
Authored by malvuln | Site malvuln.com
Backdoor.Win32.Agent.bjev malware suffers from an insecure permissions vulnerability.
Change Mirror Download
Discovery / credits: Malvuln - malvuln.com (c) 2021Original source: https://malvuln.com/advisory/ca40998b5d62ee7f936537ff3de7993d.txtContact: [email protected]: twitter.com/malvulnThreat: Backdoor.Win32.Agent.bjev Vulnerability: Insecure...
Dolibarr ERP/CRM 10.0.6 Login Brute Forcer
Authored by Creamy Chicken Soup
Dolibarr ERP/CRM version 10.0.6 login brute forcing exploit.
advisories | CVE-2020-7995
Change Mirror Download
# Exploit Title: Dolibarr ERP/CRM 10.0.6 - Login Brute Force# Date:2020-01-18# Exploit Author: Creamy...
Trojan-Spy.Win32.SpyEyes.abdb Insecure Permissions
Authored by malvuln | Site malvuln.com
Trojan-Spy.Win32.SpyEyes.abdb malware suffers from an insecure permissions vulnerability.
Change Mirror Download
Discovery / credits: Malvuln - malvuln.com (c) 2021Original source: https://malvuln.com/advisory/9185538b01ad700603f38fb0eb8b6e3b.txtContact: [email protected]: twitter.com/malvulnThreat: Trojan-Spy.Win32.SpyEyes.abdbVulnerability: Insecure Permissions...
WordPress Popular Posts 5.3.2 Shell Upload
Authored by Simone Cristofaro
WordPress Popular Posts plugin version 5.3.2 suffers from a remote shell upload vulnerability.
Change Mirror Download
# Exploit Title: WordPress Plugin Popular Posts 5.3.2 - Remote Code Execution...
Tor Half-Closed Connection Stream Confusion
Authored by Jann Horn, Google Security Research
Tor suffers from an issue where half-closed connection tracking ignores layer_hint and due to this, entry/middle relays can spoof RELAY_END cells on half-closed...