Home | Latest News | Popular News | Our Network | About | Contact
Latest Exploits | www.SecurityPhresh.com
Latest Exploits
Showing 'Latest Exploits' from 1 to 10
ASUS TM-AC1900 Arbitrary Command Execution
13th Nov 2020 [14 days ago] from ExploitDatabase
Topic: ASUS TM-AC1900 Arbitrary Command Execution Risk: High Text:## # This module requires Metasploit: https://metasploit.com/download # Current source: https://github.com/rapid7/metasploit-...
SaltStack Salt REST API Arbitrary Command Execution
12th Nov 2020 [15 days ago] from PacketStormSecurity
This Metasploit module exploits an authentication bypass and command injection in SaltStack Salts REST API to execute commands as the root user. The following versions have received a patch: 2015.8.10, 2015.8.13, 2016.3.4, 2016.3.6, 2016.3.8,...
WordPress Good LMS 2.1.4 SQL Injection
12th Nov 2020 [15 days ago] from PacketStormSecurity
WordPress Good LMS plugin versions 2.1.4 and below suffer from a remote SQL injection vulnerability.
Water Billing System 1.0 SQL Injection
12th Nov 2020 [15 days ago] from PacketStormSecurity
Water Billing System version 1.0 suffers from a remote SQL injection vulnerability.
Microsoft Windows Local Spooler Bypass
11th Nov 2020 [16 days ago] from PacketStormSecurity
Microsoft Windows suffers from a local spooler bypass vulnerability.
Customer Support System 1.0 Cross Site Scripting
11th Nov 2020 [16 days ago] from PacketStormSecurity
Customer Support System version 1.0 suffers from a persistent cross site scripting vulnerability.
Customer Support System 1.0 Cross Site Request Forgery
11th Nov 2020 [16 days ago] from PacketStormSecurity
Customer Support System version 1.0 suffers from a cross site request forgery vulnerability.
Customer Support System 1.0 SQL Injection
11th Nov 2020 [16 days ago] from PacketStormSecurity
Customer Support System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Rapid7 Metasploit Framework Msfvenom APK Template Command Injection
10th Nov 2020 [17 days ago] from PacketStormSecurity
This Metasploit module exploits a command injection vulnerability in Metasploit Frameworks msfvenom payload generator when using a crafted APK file as an Android payload template. Affected includes Metasploit Framework versions 6.0.11 and...
WordPress File Manager 6.8 Remote Code Execution
10th Nov 2020 [17 days ago] from PacketStormSecurity
The WordPress File Manager (wp-file-manager) plugin versions 6.0 through 6.8 allows remote attackers to upload and execute arbitrary PHP code because it renames an unsafe example elFinder connector file to have the .php extension. This,...
1 2 3 4 5 6 7 8 9 10 Older »