Magento / Adobe Commerce Remote Code Execution
Authored by Charles FOL, jheysel-r7, Heyder, Sergey Temnikov | Site metasploit.com
This Metasploit module uses a combination of an arbitrary file read (CVE-2024-34102) and a buffer overflow in glibc (CVE-2024-2961)....
Rittal IoT Interface / CMC III Processing Unit Signature Verification / Session ID
Authored by Johannes Kruchem | Site sec-consult.com
Rittal IoT Interface and CMC III Processing Unit versions prior to 6.21.00.2 suffer from improper signature verification and predictable session identifier vulnerabilities.
advisories |...
Dolibarr 20.0.1 SQL Injection
Authored by nu11secur1ty
Dolibarr version 20.0.1 suffers from a remote SQL injection vulnerability.
Change Mirror Download
## Titles: dolibarr 20.0.1 Multiple security token SQLi## Author: nu11secur1ty## Date: 10/15/2024## Vendor: https://www.dolibarr.org/## Software: https://www.dolibarr.org/downloads.php##...
ABB Cylon Aspect 3.08.00 sslCertAjax.php Remote Command Execution
Authored by LiquidWorm | Site zeroscience.mk
ABB Cylon Aspect version 3.08.00 suffers from an authenticated OS command injection vulnerability. This can be exploited to inject and execute arbitrary shell commands...
ABB Cylon Aspect 3.08.01 mapConfigurationDownload.php Configuration Download
Authored by LiquidWorm | Site zeroscience.mk
ABB Cylon Aspect version 3.08.01 suffers from an unauthenticated configuration download vulnerability. This can be exploited to download the SQLite DB that contains the...
BYOB Unauthenticated Remote Code Execution
Authored by Valentin Lobstein, chebuya | Site metasploit.com
This Metasploit module exploits two vulnerabilities in the BYOB (Build Your Own Botnet) web GUI. It leverages an unauthenticated arbitrary file write...
ABB Cylon Aspect 3.08.00 yumSettings.php Command Injection
Authored by LiquidWorm | Site zeroscience.mk
ABB Cylon Aspect version 3.08.00 suffers from an authenticated OS command injection vulnerability. This can be exploited to inject and execute arbitrary shell commands...
Gibbon School Platform 26.0.00 Code Injection
Authored by indoushka
Gibbon School Platform version 26.0.00 suffers from a PHP code injection vulnerability.
Change Mirror Download
=============================================================================================================================================| # Title : Gibbon School Platform 26.0.00 Code Injection...
GL.iNet 4.4.3 Code Injection
Authored by indoushka
GL.iNet version 4.4.3 suffers from authentication bypass and code injection vulnerabilities.
Change Mirror Download
=============================================================================================================================================| # Title : GL.iNet network 4.4.3 Code Injection Vulnerability ...
Kafka UI 0.7.1 Code Injection
Authored by indoushka
Kafka UI version 0.7.1 suffers from a remote code injection vulnerability.
Change Mirror Download
=============================================================================================================================================| # Title : Kafka UI 0.7.1 Code Injection Vulnerability ...
