FreshRSS

๐Ÿ”’
โŒ Secure Planet Training Courses Updated For 2019 - Click Here
โ˜ท
โ–ณ ๐Ÿ”ƒ
There are new available articles, click to refresh the page.
Before yesterdayExploit-DB Updates

[webapps] FreeBSD rtsold 15.x - Remote Code Execution via DNSSL

FreeBSD rtsold 15.x - Remote Code Execution via DNSSL

[webapps] Chained Quiz 1.3.5 - Unauthenticated Insecure Direct Object Reference via Cookie

Chained Quiz 1.3.5 - Unauthenticated Insecure Direct Object Reference via Cookie

[webapps] WordPress Quiz Maker 6.7.0.56 - SQL Injection

WordPress Quiz Maker 6.7.0.56 - SQL Injection

[webapps] Summar Employee Portal 3.98.0 - Authenticated SQL Injection

Summar Employee Portal 3.98.0 - Authenticated SQL Injection

[webapps] esm-dev 136 - Path Traversal

esm-dev 136 - Path Traversal

[webapps] Pluck 4.7.7-dev2 - PHP Code Execution

Pluck 4.7.7-dev2 - PHP Code Execution

[webapps] MaNGOSWebV4 4.0.6 - Reflected XSS

MaNGOSWebV4 4.0.6 - Reflected XSS

[webapps] phpMyFAQ 2.9.8 - Cross-Site Request Forgery(CSRF)

phpMyFAQ 2.9.8 - Cross-Site Request Forgery(CSRF)

[webapps] phpMyFAQ 2.9.8 - Cross-Site Request Forgery (CSRF)

phpMyFAQ 2.9.8 - Cross-Site Request Forgery (CSRF)

[webapps] phpMyFaq 2.9.8 - Cross Site Request Forgery (CSRF)

phpMyFaq 2.9.8 - Cross Site Request Forgery (CSRF)

[webapps] Django 5.1.13 - SQL Injection

Django 5.1.13 - SQL Injection

[webapps] phpMyAdmin 5.0.0 - SQL Injection

phpMyAdmin 5.0.0 - SQL Injection

[webapps] OpenRepeater 2.1 - OS Command Injection

OpenRepeater 2.1 - OS Command Injection

[webapps] phpIPAM 1.4 - SQL-Injection

phpIPAM 1.4 - SQL-Injection

[webapps] MobileDetect 2.8.31 - Cross-Site Scripting (XSS)

MobileDetect 2.8.31 - Cross-Site Scripting (XSS)

[webapps] openSIS Community Edition 8.0 - SQL Injection

openSIS Community Edition 8.0 - SQL Injection

[webapps] PluckCMS 4.7.10 - Unrestricted File Upload

PluckCMS 4.7.10 - Unrestricted File Upload

[webapps] RosarioSIS 6.7.2 - Cross-Site Scripting (XSS)

RosarioSIS 6.7.2 - Cross-Site Scripting (XSS)

[webapps] RosarioSIS 6.7.2 - Cross Site Scripting (XSS)

RosarioSIS 6.7.2 - Cross Site Scripting (XSS)

[webapps] phpIPAM 1.6 - Reflected-Cross-Site Scripting (XSS)

phpIPAM 1.6 - Reflected-Cross-Site Scripting (XSS)

[webapps] Piwigo 13.6.0 - SQL Injection

Piwigo 13.6.0 - SQL Injection

[webapps] phpIPAM 1.6 - Reflected Cross-Site Scripting (XSS)

phpIPAM 1.6 - Reflected Cross-Site Scripting (XSS)

[webapps] phpIPAM 1.5.1 - SQL Injection

phpIPAM 1.5.1 - SQL Injection

[webapps] phpMyFAQ 3.1.7 - Reflected Cross-Site Scripting (XSS)

phpMyFAQ 3.1.7 - Reflected Cross-Site Scripting (XSS)

[webapps] YOURLS 1.8.2 - Cross-Site Request Forgery (CSRF)

YOURLS 1.8.2 - Cross-Site Request Forgery (CSRF)

[webapps] Flowise 3.0.4 - Remote Code Execution (RCE)

Flowise 3.0.4 - Remote Code Execution (RCE)

[webapps] Casdoor 2.95.0 - Cross-Site Request Forgery (CSRF)

Casdoor 2.95.0 - Cross-Site Request Forgery (CSRF)

[remote] HTTP/2 2.0 - Denial Of Service (DOS)

HTTP/2 2.0 - Denial Of Service (DOS)

[webapps] Concrete CMS 9.4.3 - Stored XSS

Concrete CMS 9.4.3 - Stored XSS

[local] Mbed TLS 3.6.4 - Use-After-Free

Mbed TLS 3.6.4 - Use-After-Free

[webapps] ELEX WooCommerce WordPress Plugin 1.4.3 - SQL Injection

ELEX WooCommerce WordPress Plugin 1.4.3 - SQL Injection

[webapps] XWiki Platform 15.10.10 - Metasploit Module for Remote Code Execution (RCE)

XWiki Platform 15.10.10 - Metasploit Module for Remote Code Execution (RCE)

[webapps] Casdoor 2.55.0 - Cross-Site Request Forgery (CSRF)

Casdoor 2.55.0 - Cross-Site Request Forgery (CSRF)

[webapps] dotCMS 25.07.02-1 - Authenticated Blind SQL Injection

dotCMS 25.07.02-1 - Authenticated Blind SQL Injection

[webapps] Tourism Management System 2.0 - Arbitrary Shell Upload

Tourism Management System 2.0 - Arbitrary Shell Upload

[remote] ClipBucket 5.5.2 Build #90 - Server-Side Request Forgery (SSRF)

ClipBucket 5.5.2 Build #90 - Server-Side Request Forgery (SSRF)

[remote] ClipBucket 5.5.0 - Arbitrary File Upload

ClipBucket 5.5.0 - Arbitrary File Upload

[local] Microsoft Windows Server 2025 Hyper-V NT Kernel Integration VSP - Elevation of Privilege

Microsoft Windows Server 2025 Hyper-V NT Kernel Integration VSP - Elevation of Privilege

[remote] HTMLDOC 1.9.13 - Stack Buffer Overflow

HTMLDOC 1.9.13 - Stack Buffer Overflow

[remote] Ilevia EVE X1/X5 Server 4.7.18.0.eden - Reverse Rootshell

Ilevia EVE X1/X5 Server 4.7.18.0.eden - Reverse Rootshell

[webapps] Lingdang CRM 8.6.4.7 - SQL Injection

Lingdang CRM 8.6.4.7 - SQL Injection

[remote] Ivanti Endpoint Manager Mobile 12.5.0.0 - Authentication Bypass

Ivanti Endpoint Manager Mobile 12.5.0.0 - Authentication Bypass

[webapps] Birth Chart Compatibility WordPress Plugin 2.0 - Full Path Disclosure

Birth Chart Compatibility WordPress Plugin 2.0 - Full Path Disclosure

[webapps] StoryChief Wordpress Plugin 1.0.42 - Arbitrary File Upload

StoryChief Wordpress Plugin 1.0.42 - Arbitrary File Upload

[local] GeoVision ASManager Windows Application 6.1.2.0 - Credentials Disclosure

GeoVision ASManager Windows Application 6.1.2.0 - Credentials Disclosure

[remote] GeoVision ASManager Windows Application 6.1.2.0 - Remote Code Execution (RCE)

GeoVision ASManager Windows Application 6.1.2.0 - Remote Code Execution (RCE)

[webapps] RiteCMS 3.0.0 - Reflected Cross Site Scripting (XSS)

RiteCMS 3.0.0 - Reflected Cross Site Scripting (XSS)

[webapps] Lantronix Provisioning Manager 7.10.3 - XML External Entity Injection (XXE)

Lantronix Provisioning Manager 7.10.3 - XML External Entity Injection (XXE)

[webapps] BigAnt Office Messenger 5.6.06 - SQL Injection

BigAnt Office Messenger 5.6.06 - SQL Injection

[remote] PHPMyAdmin 3.0 - Bruteforce Login Bypass

PHPMyAdmin 3.0 - Bruteforce Login Bypass

[remote] Microsoft Windows 10.0.19045 - NTLMv2 Hash Disclosure

Microsoft Windows 10.0.19045 - NTLMv2 Hash Disclosure

[webapps] Soosyze CMS 2.0 - Brute Force Login

Soosyze CMS 2.0 - Brute Force Login

[remote] Tenda AC20 16.03.08.12 - Command Injection

Tenda AC20 16.03.08.12 - Command Injection

[webapps] atjiu pybbs 6.0.0 - Cross Site Scripting (XSS)

atjiu pybbs 6.0.0 - Cross Site Scripting (XSS)

[local] Microsoft Windows - Storage QoS Filter Driver Checker

Microsoft Windows - Storage QoS Filter Driver Checker

[webapps] Grav CMS 1.7.48 - Remote Code Execution (RCE)

Grav CMS 1.7.48 - Remote Code Execution (RCE)

[remote] Citrix NetScaler ADC/Gateway 14.1 - Memory Disclosure

Citrix NetScaler ADC/Gateway 14.1 - Memory Disclosure

[remote] Tigo Energy Cloud Connect Advanced (CCA) 4.0.1 - Command Injection

Tigo Energy Cloud Connect Advanced (CCA) 4.0.1 - Command Injection

[webapps] Microsoft Edge Renderer Process (Mojo IPC) 134.0.6998.177 - Sandbox Escape

Microsoft Edge Renderer Process (Mojo IPC) 134.0.6998.177 - Sandbox Escape

[webapps] VMware vSphere Client 8.0.3.0 - Reflected Cross-Site Scripting (XSS)

VMware vSphere Client 8.0.3.0 - Reflected Cross-Site Scripting (XSS)
โŒ