| Security News from 'PacketStormSecurity' |
| Showing 'Security News from 'PacketStormSecurity'' from 1 to 10|
| |Kados R10 GreenBee SQL Injection Kados R10 GreenBee suffers from a remote SQL injection vulnerability in the menu_lev1 parameter.
| |OrientDB 3.0.17 GA Community Edition XSS / CSRF OrientDB version 3.0.17 GA Community Edition suffers from cross site request forgery and cross site scripting vulnerabilities.
| |QNAP TS-431 QTS Remote Command Execution This Metasploit module creates a virtual web server and uploads the php payload into it. Admin privileges cannot access any server files except File Station files. The user who is authorized to create Virtual Web Server can upload malicious...
| |Anyburn 4.x X86 Buffer Overflow Anyburn version 4.3 x86 "Copy disc to image file" buffer overflow SEH unicode exploit.
| |Oracle Weblogic Server Deserialization Remote Command Execution Oracle Weblogic Server deserialization remote command execution exploit with patch bypass.
| |Sparkasse Cross Site Scripting The vulnerability laboratory core research team discovered multiple persistent cross site vulnerabilities in the Sparkasse online service web-application.
| |FreeBSD Intel SYSRET Privilege Escalation This Metasploit module exploits a vulnerability in the FreeBSD kernel, when running on 64-bit Intel processors. By design, 64-bit processors following the X86-64 specification will trigger a general protection fault (GPF) when executing...
| |Android Su Privilege Escalation This Metasploit module uses the su binary present on rooted devices to run a payload as root. A rooted Android device will contain a su binary (often linked with an application) that allows the user to run commands as root. This module...
| |ClearOS 7 Community Edition Cross Site Scripting ClearOS 7 Community Edition suffers from a cross site scripting vulnerability.
| |Imperva SecureSphere 13.x PWS Command Injection This Metasploit module exploits a command injection vulnerability in Imperva SecureSphere version 13.x. The vulnerability exists in the PWS service, where Python CGIs did not properly sanitize user supplied command parameters and directly...
| 1 2 3 4 5 6 7 8 9 10 Older » |