Senayan Library Management System 9.4.0 Cross Site Scripting
Authored by nu11secur1ty
Senayan Library Management System version 9.4.0 suffers from a cross site scripting vulnerability.
Change Mirror Download
## Title: Senayan Library Management System v9.4.0 a.k.a SLIMS 9XSS-Reflected- PHPSESSID Hijacking## Author:...
Senayan Library Management System 9.0.0 Cross Site Scripting
Authored by nu11secur1ty
Senayan Library Management System version 9.0.0 suffers from a cross site scripting vulnerability.
Change Mirror Download
## Title: Senayan Library Management System v9.0.0 a.k.a SLIMS 9Multiple XSS-Reflected vulnerabilities## Author:...
Senayan Library Management System 9.0.0 SQL Injection
Authored by nu11secur1ty
Senayan Library Management System version 9.0.l0 suffers from a remote SQL injection vulnerability.
Change Mirror Download
## Title: Senayan Library Management System v9.0.0 a.k.a SLIMS 9 SQLi## Author: nu11secur1ty##...
Senayan Library Management System 9.1.0 SQL Injection
Authored by nu11secur1ty
Senayan Library Management System 9.1.0 suffers from a remote SQL injection vulnerability.
Change Mirror Download
## Title: Senayan Library Management System v9.1.0 a.k.a SLIMS 9 SQLi## Author: nu11secur1ty## Date:...
snap-confine must_mkdir_and_open_with_perms() Race Condition
Authored by Qualys Security Advisory
Qualys discovered a race condition (CVE-2022-3328) in snap-confine, a SUID-root program installed by default on Ubuntu. In this advisory,they tell the story of this vulnerability...
Zhuhai Suny Technology ESL Tag Forgery / Replay Attacks
Authored by Steffen Robertz | Site sec-consult.com
Zhuhai Suny Technology ESL Tag suffers from replay attacks and a forgery attack allowing for the displaying of arbitrary contents.
advisories | CVE-2022-45914
Change Mirror...
Intel Data Center Manager 5.1 Local Privilege Escalation
Authored by Julien Ahrens | Site rcesecurity.com
The latest version (5.1) and all prior versions of Intel's Data Center Manager are vulnerable to a local privileges escalation vulnerability using the...
Intel Data Center Manager 4.1 SQL Injection
Authored by Julien Ahrens | Site rcesecurity.com
Intel Data Center Manager's endpoint at "/DcmConsole/DataAccessServlet?action=getRoomRackData" is vulnerable to an authenticated, blind SQL injection attack when user-supplied input to the HTTP POST...
py7zr 0.20.0 Directory Traversal
Authored by Matteo Cosentino
A directory traversal vulnerability in the SevenZipFile.extractall() function of the python library py7zr versions 0.20.0 and earlier allows attackers to read arbitrary files on the local...
Windows HTTP.SYS Kerberos PAC Verification Bypass / Privilege Escalation
Authored by James Forshaw, Google Security Research
The HTTP server implemented in HTTP.SYS on Windows handles authentication in a system thread which bypasses PAC verification leading to escalation of privilege.
advisories...





