CVE-2017-18290

An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exists in ladder/stats.php via the GET sortdirection parameter...

SUSE CVE-2022-49903

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix WARNING in ip6routenetexitlate During the initialization of ip6routenetinitlate, if file ipv6route or rt6stats fails to be created, the initialization is successful by default. Therefore, the ipv6route or rt6stats file...

PT-2024-15985 · WordPress · The Everest Backup – Wordpress Cloud Backup

Name of the Vulnerable Software and Affected Versions: The Everest Backup – WordPress Cloud Backup, Migration, Restore & Cloning Plugin versions up to, and including, 2.2.13 Description: The issue allows unauthenticated attackers to obtain an archive file name and download the site's backup due t...

PT-2021-22556 · WordPress · Fv Flowplayer Video Player

Name of the Vulnerable Software and Affected Versions: FV Flowplayer Video Player WordPress plugin versions 7.5.0.727 through 7.5.2.727 Description: The issue allows attackers to inject arbitrary web scripts via the player id parameter found in the /view/stats.php file, enabling Reflected...

Media Player classic StatsReader - .stats Stack Buffer Overflow (PoC)

Media Player classic StatsReader - .stats Stack Buffer Overflow PoC ! /usr/bin/python Media Player classic StatsReader .stats file stack buffer Overflow poc Software Link: http://mpc-hc.sourceforge.net/download-media-player-classic-hc.html Tested in : Windows XP SP3 Credit : ItSecTeam mail :...

PT-2006-5967 · Isearch · Isearch

Name of the Vulnerable Software and Affected Versions: iSearch version 2.16 Description: The issue concerns remote file inclusion vulnerabilities that could allow remote attackers to execute arbitrary PHP code. This is achieved by providing a URL in the isearch path parameter within various PHP...