4 matches found
Tutor LMS <= 2.1.10 - SQL Injection
Tutor LMS – eLearning and online course solution plugin for WordPress all versions up to 2.6.1 contains a time-based SQL Injection caused by insufficient escaping on the questionid parameter in SQL queries, letting authenticated attackers with subscriber or higher access extract sensitive...
PT-2022-26182 · Muhammara +1 · Muhammara +1
Name of the Vulnerable Software and Affected Versions: muhammara versions prior to 2.6.2 muhammara versions 3.0.0 through 3.3.0 hummus all versions Description: The issue is related to a Denial of Service DoS condition that occurs when a maliciously crafted PDF file is parsed. The problem arises...
IVPN Client 2.6.1 - Local Privilege Escalation
IVPN Client 2.6.1 - Local Privilege Escalation Exploit IVPN Client for Windows 2.6.6120.33863 Privilege Escalation Date: 06.02.2017 Software Link: https://www.ivpn.net/ Exploit Author: Kacper Szurek Contact: https://twitter.com/KacperSzurek Website: https://security.szurek.pl/ Category: local 1...
IVPN Client 2.6.1 - Local Privilege Escalation
Exploit IVPN Client for Windows 2.6.6120.33863 Privilege Escalation Date: 06.02.2017 Software Link: https://www.ivpn.net/ Exploit Author: Kacper Szurek Contact: https://twitter.com/KacperSzurek Website: https://security.szurek.pl/ Category: local 1. Description It is possible to run openvpn as...