Jump to content
YOUR-AD-HERE
HOSTING
TOOLS

All Activity

This stream auto-updates

  1. Today
  2. Yesterday
  3. This archive contains all of the 106 exploits added to Packet Storm in February, 2024.View the full article
  4. This Metasploit module leverages CVE-2023-38836, an improper sanitization bug in BoidCMS versions 2.0.0 and below. BoidCMS allows the authenticated upload of a php file as media if the file has the GIF header, even if the file is a php file.View the full article
  5. Membership Management System version 1.0 suffers from a remote SQL injection vulnerability.View the full article
  6. Last week
  7. Backdoor.Win32.Agent.amt malware suffers from bypass and code execution vulnerabilities.View the full article
  8. Backdoor.Win32.Jeemp.c malware suffers from a hardcoded credential vulnerability.View the full article
  9. WordPress IDonate Blood Request Management System plugin versions 1.8.1 and below suffer from a persistent cross site scripting vulnerability.View the full article
  10. In the tgnet library used in Telegram messenger for Android, there is a use-after-free vulnerability in Connection::onReceivedData that can be triggered remotely.View the full article
  11. This is a key derivation exploit for Saflokk System 6000.View the full article
  12. Blood Bank version 1.0 suffers from multiple remote SQL injection vulnerabilities. Original discovery of SQL injection in this version is attributed to Nitin Sharma in October of 2021.View the full article
  13. WordPress WP Fastest Cache plugin version 1.2.2 suffers from an unauthenticated remote SQL injection vulnerability.View the full article
  14. WordPress Admin Bar and Dashboard Access Control plugin version 1.28 suffers from a persistent cross site scripting vulnerability.View the full article
  15. Hospital Management System version 1.0 suffers from insecure direct object reference and account takeover vulnerabilities.View the full article
  16. Hospital Management System version 1.0 suffers from a persistent cross site scripting vulnerability.View the full article
  17. Hospital Management System version 1.0 suffers from a remote SQL injection vulnerability.View the full article
  18. Executables created with perl2exe versions 30.10C and below suffer from an arbitrary code execution vulnerability.View the full article
  19. Automatic-Systems SOC FL9600 FastLine version V06 has hardcoded credentials for super admin functionality.View the full article
  20. Automatic-Systems SOC FL9600 FastLine version V06 suffers from a directory traversal vulnerability.View the full article
  21. This Metasploit module exploits a broken access control vulnerability in Atlassian Confluence servers leading to an authentication bypass. A specially crafted request can be create new admin account without authentication on the target Atlassian server.View the full article
  22. Moodle version 4.3 suffers from an insecure direct object reference vulnerability.View the full article
  23. WordPress Canto versions prior to 3.0.5 suffer from remote file inclusion and shell upload vulnerabilities.View the full article
  24. WordPress Comments Like Dislike plugin versions 1.2.0 and below suffer from a missing capability check on the restore_settings function that allows an attacker to reset the plugin's settings.View the full article
  25. SuperStoreFinder versions 3.7 and below suffer from cross site request forgery, remote command execution, and remote SQL injection vulnerabilities.View the full article
  1. Load more activity
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.