GLPI 10.x.x Remote Command Execution
Authored by V3locidad
GLPI versions 10.x.x suffers from a remote command execution vulnerability via the shell commands plugin.
advisories | CVE-2024-31705
CrushFTP Remote Code Execution
Authored by Christophe de la Fuente, Ryan Emmons | Site metasploit.com
This Metasploit exploit module leverages an improperly controlled modification of dynamically-determined object attributes vulnerability (CVE-2023-43177) to achieve unauthenticated remote...
Amazon AWS Glue Database Password Disclosure
Authored by Michael Werner | Site sec-consult.com
The password of database connections in AWS Glue is loaded into the website when a connection's edit page is requested. Principals with appropriate...
Backdoor.Win32.Dumador.c MVID-2024-0679 Buffer Overflow
Authored by malvuln | Site malvuln.com
Backdoor.Win32.Dumador.c malware suffers from a buffer overflow vulnerability.
Change Mirror Download
Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2024Original source: https://malvuln.com/advisory/6cc630843cabf23621375830df474bc5.txtContact: [email protected]: twitter.com/malvulnThreat: Backdoor.Win32.Dumador.cVulnerability:...
Centreon 23.10-1.el8 SQL Injection
Authored by Cody Sixteen | Site code610.blogspot.com
Centreon version 23.10-1.el8 suffers from a remote authenticated SQL injection vulnerability.
Change Mirror Download
;; Postauth SQL Injection in Centreon 23.10-1.el8;; by code610;; ;; found...
pgAdmin 8.3 Remote Code Execution
Authored by Spencer McIntyre, Abdel Adim Oisfi, Davide Silvetti | Site metasploit.com
pgAdmin versions 8.3 and below have a path traversal vulnerability within their session management logic that can allow...
Palo Alto OS Command Injection Proof Of Concept
Authored by W01fh4cker | Site github.com
This is a scanning script to validate vulnerable Palo Alto OS systems for the recent zero day command injection vulnerability.
advisories | CVE-2024-3400
Palo Alto OS Command Injection
Authored by h4x0r-dz | Site github.com
Palo Alto OS was recently hit by a command injection zero day attack. These are exploitation details related to the zero day.
advisories | CVE-2024-3400
Change...
WBCE 1.6.0 SQL Injection
Authored by Young Pope
WBCE version 1.6.0 suffers from a remote SQL injection vulnerability.
advisories | CVE-2023-39796
Change Mirror Download
# Exploit Title: |Unauthenticated SQL injection in WBCE 1.6.0# Date: 15.11.2023 # Exploit...
Kruxton 1.0 Shell Upload
Authored by nu11secur1ty
Kruxton version 1.0 suffers from a remote shell upload vulnerability.
Change Mirror Download
## Title: kruxton-1.0-FileUpload-RCE## Author: nu11secur1ty## Date: 04/15/2024## Vendor: https://www.mayurik.com/## Software: https://www.sourcecodester.com/php/16127/best-pos-management-system-php.html## Reference: https://portswigger.net/web-security/file-upload## Description:The system setting...