FoF Pretty Mail 1.1.2 Local File Inclusion
Authored by Chokri Hammedi
The FoF Pretty Mail extension version 1.1.2 for Flarum suffers from a local file inclusion vulnerability.
Change Mirror Download
Exploit Title: FoF Pretty Mail 1.1.2 Extension for Flarum...
GL.iNet AR300M 4.3.7 Remote Code Execution
Authored by Michele Di Bonaventura
GL.iNet AR300M versions 4.3.7 and below suffer from an OpenVPN client related remote code execution vulnerability.
advisories | CVE-2023-46454
Change Mirror Download
#!/usr/bin/env python3# Exploit Title: GL.iNet <=...
Netsia SEBA+ 0.16.1 Authentcation Bypass / Add Root User
Authored by AkkuS | Site metasploit.com
This Metasploit module exploits an authentication bypass in Netsia SEBA+ versions 0.16.1 and below to add a root user.
Change Mirror Download
### This module requires...
Ray OS 2.6.3 Command Injection
Authored by Fire_Wolf
The Ray Project dashboard contains a CPU profiling page, and the format parameter is not validated before being inserted into a system command executed in a shell,...
Nokia OneNDS 20.9 Insecure Permissions / Privilege Escalation
Authored by Giacomo Sighinolfi
Nokia OneNDS 20.9 has loose sudo permissions that can allow users to escalate privileges.
advisories | CVE-2022-30759
Change Mirror Download
=============================================================================== ...
Stealing Part Of A Production Language Model
Authored by David Rolnick, Jonathan Hayase, Eric Wallace, Nicholas Carlini, Arthur Conmy, Thomas Steinke, Matthew Jagielski, Florian Tramer, Krishnamurthy Dvijotham, Daniel Paleka, Katherine Lee, Milad Nasr, A. Feder Cooper
In...
FileMage Gateway 1.10.9 Local File Inclusion
Authored by Bryce Harty
FileMage Gateway version 1.10.9 suffers from a local file inclusion vulnerability.
advisories | CVE-2023-39026
Change Mirror Download
# Exploit Title: FileMage Gateway 1.10.9 - Local File Inclusion# Date: 8/22/2023#...
Car Driving School Management 1.0 SQL Injection
Authored by nu11secur1ty
Car Driving School Management version 1.0 suffers from a remote SQL injection vulnerability.
Change Mirror Download
## Title: Car Driving School Management v1.0 SQLi## Author: nu11secur1ty## Date: 03.02.2022## Vendor:...
TextPattern CMS 4.8.7 Remote Command Execution
Authored by Mert Das
TextPattern CMS version 4.8.7 suffers from an authenticated remote command execution vulnerability.
Change Mirror Download
# Exploit Title : TextPattern CMS 4.8.7 - Remote Command Execution (Authenticated)# Date...
Backdoor.Win32.BirdSpy.b Hardcoded Credential
Authored by malvuln | Site malvuln.com
Backdoor.Win32.BirdSpy.b malware suffers from a hardcoded credential vulnerability.
Change Mirror Download
Discovery / credits: Malvuln - malvuln.com (c) 2022Original source: https://malvuln.com/advisory/eba3dd81723ddf33621fd85ded577920.txtContact: [email protected]: twitter.com/malvulnThreat: Backdoor.Win32.BirdSpy.bVulnerability: Weak Hardcoded...