PT-2025-33883

Name of the Vulnerable Software and Affected Versions: SolidInvoice versions prior to 2.4.1 Description: A security flaw has been discovered in SolidInvoice. The impacted element is an unknown function within the /clients file of the Clients Module. Manipulation of the Name argument results in...

PT-2025-33741 · Scada-Lts · Scada-Lts

Name of the Vulnerable Software and Affected Versions: Scada-LTS version 2.7.8.1 Description: A security flaw exists in Scada-LTS 2.7.8.1 related to the mailing lists.shtm file. Manipulation of the name/userList/address argument can lead to cross-site scripting. This issue is potentially...

CVE-2025-6874

CVE-2025-6874 affects SourceCodester Best Salon Management System v1.0. The vulnerability resides in the file /panel/add_subscribe.php , where manipulating the parameters user_id/plan_id leads to a SQL injection. It can be exploited remotely and the exploit has been disclosed publicly. If exploit...

PT-2024-30250 · Jenkins · Jenkins

Name of the Vulnerable Software and Affected Versions: Jenkins affected versions not specified Description: A proof of concept PoC exploit has been released for a bug in Jenkins. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerabili...

PT-2024-4600 · Vmware · Vmware Vcenter Server +1

Name of the Vulnerable Software and Affected Versions: VMware vCenter Server affected versions not specified Description: The vCenter Server contains an authenticated remote code execution vulnerability. A malicious actor with administrative privileges on the vCenter appliance shell may exploit...

Vulnerability fixed in PostgreSQL

Because of a vulnerability in PostgreSQL, a malicious person with DB-admin privileges to obtain the rights with which the server is running. Exploit code has been released for this vulnerability. Currently, there is no update or patch available. You can mitigate abuse mitigate abuse of this...

Typo3 Restler 1.7.0 Local File Disclosure

Exploit Title: Typo3 Restler Extension - Local File Disclosure Date: 2017-10-13 Exploit Author: CrashBandicot @dosperl Vendor Homepage: https://www.aoe.com/ Software Link: https://extensions.typo3.org/extension/restler/ Tested on : MsWin Version: 1.7.0 last Vulnerability File : getsource.php 3...

AudioCoder 0.8.46 - Local Buffer Overflow (SEH)

!/usr/bin/python Exploit Title : AudioCoder 0.8.46 Local Buffer Overflow SEH CVE : CVE-2017-8870 Exploit Author : Muhann4d @0xSecured Vendor Homepage : http://www.mediacoderhq.com Vulnerable Software:...

Core FTP Server 32-bit Build 587 - Heap Overflow

-- coding: cp1252 -- Exploit Title: Core FTP Server 32-bit - Build 587 Heap Overflow Date: 05/10/2016 Exploit Author: Paul Purcell Contact: ptpxploit at gmail Vendor Homepage: http://www.coreftp.com/ Vulnerable Version Download: http://coreftp.com/server/download/archive/CoreFTPServer587.exe...

BizDirectory <== 2.04 Cross-Site Scripting Vulnerabilities

Dear Securiteam moderator: I found a bug in BizDirectory that allows to us to occur a Cross-Site Scripting on a Remote machin. It works tested with the Vulnerable Software 2.04. An Exploit Released For This Vulnerability. A Full Description Can be found in the document: Islamic Republic Of Iran...

miniBB 2.2 (CSS/SQL/FPD) Multiple Remote Vulnerabilities

Exploit for unknown platform in category web applications ======================================================== miniBB 2.2 CSS/SQL/FPD Multiple Remote Vulnerabilities ======================================================== Author: GiReX Date: 21/04/2008 CMS: miniBB 2.2 and maybe prior Site:...

Mac OS X 10.3 iSync Privilege Escalation

Hello everyone, a buffer overflow flaw has been discovered in the mRouter suid root binary installed by iSync in OS X 10.3 by default. Program: /System/Library/SyncServices/SymbianConduit.bundle/Contents/ Resources/mRouter Impact: Privilege Escalation root access euid=0 Discovered: 12th January,...