CVE-2026-6992 Linksys MR9600 JNAP Action run_central2.sh BTRequestGetSmartConnectStatus os command injection

A vulnerability was identified in Linksys MR9600 2.0.6.206937. This affects the function BTRequestGetSmartConnectStatus of the file /etc/init.d/runcentral2.sh of the component JNAP Action Handler. The manipulation of the argument pin leads to os command injection. The attack may be initiated...

Mattermost 安全漏洞

Mattermost Server is the United States Mattermost company's set of open source messaging platform. An access control error vulnerability exists in Mattermost Server, which can be exploited by an attacker to bypass access restrictions and view all details of a script run when the run is marked as...

Cisco AnyConnect SBL 4.3.04027 Local Privilege Escalation (CVE-2017-3813)

Run CMD.EXE with system privileges 1. Start Cisco anyconnect from logon screen. 2. Once the Cisco app comes up where you can select a profile and hit connect hold CTRL and hit B. 3. When the Cisco about window appears then select the URL at the bottom. This will open Internet Explorer or you can...

Microsoft Internet Explorer Elevation of Privilege (MS16-009: CVE-2016-0068)

An elevation of privilege vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way Internet Explorer validates permissions under specific conditions, potentially allowing script to be run with elevated privileges...

Kwik Pay Payroll 4.10.3 - (.mdb) Crash PoC

No description provided by source. Exploit Title: Kwik Pay Payroll .mdb Crash PoC Date: April 1, 2010 Version: 4.10.3 Tested on: Windows XP SP3 Cost: 100.00 AU Author: anonymous Site: http://www.setfreesecurity.com Usage: Run Script, Open the program File - Import Payroll Data Select From Data...