SolarWinds Orion Secrets Dump

This module exports and decrypts credentials from SolarWinds Orion Network Performance Monitor NPM to a CSV file; it is intended as a post-exploitation module for Windows hosts with SolarWinds Orion NPM installed. The module supports decryption of AES-256, RSA, and XMLSEC secrets. Separate action...

Trend Micro Apex One 访问控制错误漏洞

Trend Micro Apex One is an endpoint protection software from Trend Micro, Inc. A security vulnerability exists in the Trend Micro Apex One 2020 On-prem SaaS version, which originates from an attacker who is able to log in to a system where the affected product is installed may be able to cause a...

CVE-2021-38109

Corel DrawStandard 2020 22.0.0.474 is affected by an Out-of-bounds Read vulnerability when parsing a crafted file. An unauthenticated attacker could leverage this vulnerability to access unauthorized system memory in the context of the current user. Exploitation of this issue requires user...

ZZCMS suffers from SQL injection vulnerability (CNVD-2020-66606)

ZZCMS is a content management system for Webmaster Merchants. ZZCMS 2020 suffers from a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive information from the database...

CVE-2020-3776

Adobe Photoshop CC 2019 versions 20.0.8 and earlier, and Photoshop 2020 versions 21.1 and earlier have a buffer errors vulnerability. Successful exploitation could lead to arbitrary code execution...

May 2020 Refresh Release

Update to version 0.8.20139.001...