MagnusBilling 6.x Code Injection
Authored by indoushka
MagnusBilling version 6.x suffers from a PHP code injection vulnerability.
Change Mirror Download
=============================================================================================================================================| # Title : MagnusBilling 6.x Code Injection Vulnerability ...
Openfire 4.8.0 Code Injection
Authored by indoushka
Openfire version 4.8.0 suffers from authentication bypass and code injection vulnerabilities.
Change Mirror Download
=============================================================================================================================================| # Title : Openfire release 4.8.0 Code Injection Vulnerability ...
SolarView Compact 6.00 Code Injection
Authored by indoushka
SolarView Compact version 6.00 suffers from a PHP code injection vulnerability.
Change Mirror Download
=============================================================================================================================================| # Title : SolarView Compact 6.00 Code Injection Vulnerability ...
TerraMaster TOS 4.2.29 Code Injection / Local File Inclusion
Authored by indoushka
TerraMaster TOS version 4.2.29 suffers from a remote code injection vulnerability leveraging a local file inclusion vulnerability.
Change Mirror Download
=============================================================================================================================================| # Title : TerraMaster...
ABB Cylon Aspect 3.07.02 sshUpdate.php Unauthenticated Remote SSH Service Control
Authored by LiquidWorm | Site zeroscience.mk
ABB Cylon Aspect version 3.07.02 suffers from a vulnerability that allows an unauthenticated attacker to enable or disable the SSH daemon by sending a...
ABB Cylon Aspect 3.08.00 dialupSwitch.php Remote Code Execution
Authored by LiquidWorm | Site zeroscience.mk
ABB Cylon Aspect version 3.08.00 suffers from an authenticated OS command injection vulnerability. This can be exploited to inject and execute arbitrary shell commands...
ABB Cylon Aspect 3.07.02 user.properties Default Credentials
Authored by LiquidWorm | Site zeroscience.mk
ABB Cylon Aspect version 3.07.02 uses a weak set of default administrative credentials that can be guessed in remote password attacks and used to...
ABB Cylon Aspect 3.08.00 syslogSwitch.php Remote Code Execution
Authored by LiquidWorm | Site zeroscience.mk
ABB Cylon Aspect versions 3.08.00 and below suffer from an authenticated OS command injection vulnerability. This can be exploited to inject and execute arbitrary...
iTunes For Windows 12.13.2.3 Local Privilege Escalation
Authored by mbog14 | Site github.com
This is a thorough write up of how to exploit a local privilege escalation vulnerability in iTunes for Windows version 12.13.2.3. Apple fixed this...
Ruby-SAML / GitLab Authentication Bypass
Authored by Synacktiv | Site github.com
This script exploits the issue noted in CVE-2024-45409 that allows an unauthenticated attacker with access to any signed SAML document issued by the IDP...
