740 matches found
Joomla Component com_picsell 1.0 LFI
A simple LFI Vulnerability Vulnerability Type: Local File Include For the exploit source code contact DSquare Security sales team...
Nagios 3.1.0 RCE
Remote command execution vulnerability in Nagios statuswml.cgi Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...
Sitracker SIT File Upload
This module combines two separate issues within Support Incident Tracker = 3.65 application to upload arbitrary data and thus execute a shell. The two issues exist in ftpuploadfile.php. Vulnerability Type: File Upload For the exploit source code contact DSquare Security sales team...
TerraMaster Operating System SQL Injection
SQL Injection vulnerability in TerraMaster Operating System Event parameter Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...
Dell SonicWALL Secure Remote Access diagnostics RCE
Remote command execution vulnerability in Dell SonicWALL Secure Remote Access /cgi-bin/diagnostics Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...
Joomla Component com_jomestate 1.0 SQL Injection
SQL Injection vulnerability in Joomla Jomestate Component id parameter Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...
Belkin Router Information Disclosure
Remote administrator password Vulnerability Type: File Disclosure For the exploit source code contact DSquare Security sales team...
HP Intelligent Management Center BIMS UploadServlet File Upload
File upload vulnerability in HP Intelligent Management Center BIMS UploadServlet Vulnerability Type: File Upload For the exploit source code contact DSquare Security sales team...
Apache Roller OGNL Injection
This module exploits an OGNL injection vulnerability in Apache Roller 5.0.2. The vulnerability is due to an OGNL injection on the UIAction controller because of an insecure usage of the ActionSupport.getText method. Vulnerability Type: Remote Command Execution For the exploit source code contact...
Apache-Struts Showcase < 2.3.14.1 RCE Linux
Apache Struts Crafted Parameter Arbitrary OGNL Code Execution Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...
vBulletin 5.0.0 Beta xx SQL Injection
SQL Injection vulnerability in vBulletin nodeid Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...
Wordpress Kino Gallery 1.0 File Upload
File upload vulnerability in Wordpress Kino Gallery plugin Vulnerability Type: File Upload For the exploit source code contact DSquare Security sales team...
Joomla Component com_sweetykeeper 1.5.x LFI
A simple LFI Vulnerability Vulnerability Type: Local File Include For the exploit source code contact DSquare Security sales team...
Joomla Component com_weberpcustomer 1.2.1 LFI
A simple LFI Vulnerability Vulnerability Type: Local File Include For the exploit source code contact DSquare Security sales team...
AWCM 2.2 LFI
Local file include vulnerability in AWCM awcmlang cookie parameter Vulnerability Type: Local File Include For the exploit source code contact DSquare Security sales team...
Exponent CMS SQL Injection
SQL Injection vulnerability in Exponent CMS expCommentController.php contentid parameter Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...
Solarwinds Storage Manager ProcessFileUpload.jsp File Upload
File upload vulnerability in Solarwinds Storage Manager ProcessFileUpload.jsp Vulnerability Type: File Upload For the exploit source code contact DSquare Security sales team...
Apache Axis2 FD
Directory traversal vulnerability Vulnerability Type: File Disclosure For the exploit source code contact DSquare Security sales team...
Asus Wireless-N Gigabit Router Information Disclosure
Remote administrator password Vulnerability Type: File Disclosure For the exploit source code contact DSquare Security sales team...
Skybluecanvas 1.1 RCE
Remote command execution vulnerability in Skybluecanvas Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...
vtiger CRM 5.4.0 File Upload
File upload vulnerability in vtiger CRM SOAP AddEmailAttachment service Vulnerability Type: File Upload For the exploit source code contact DSquare Security sales team...
GLPI 0.84.1 RCE
Remote command execution vulnerability in GLPI install/install.php Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...
Zabbix 2.0 SQL Injection
SQL Injection vulnerability in Zabbix itemid parameter Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...
Symantec Web Gateway 5.0.3.18 RCE
Remote command execution vulnerability in Symantec Web Gateway pbcontrol.php Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...
yappa-ng 2.3.2 LFI
Local file include vulnerability in yappa-ng album parameter Vulnerability Type: Local File Include For the exploit source code contact DSquare Security sales team...
Majordomo 2 File Disclosure
File disclosure vulnerability in Majordomo 2 help command Vulnerability Type: File Disclosure For the exploit source code contact DSquare Security sales team...
Lenovo ThinkManagement Console 9.0.3 File Upload
File upload vulnerability in Lenovo ThinkManagement Console Vulnerability Type: File Upload For the exploit source code contact DSquare Security sales team...
Joomla Component com_joomlaupdater LFI
A simple LFI Vulnerability Vulnerability Type: Local File Include For the exploit source code contact DSquare Security sales team...
TYPO3 4.5.8/4.6.1 RFI
Remote file inclusion in Typo3 in the workspaces system extension AbstractController.php Vulnerability Type: Remote File Include For the exploit source code contact DSquare Security sales team...
Joomla Component com_easy_youtube_gallery 1.0.2 SQL Injection
SQL Injection vulnerability in Joomla Component comeasyyoutubegallery mycategory parameter Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...
vBSEO 3.6.0 functions_vbseo_hook.php Referer RCE
Remote command execution vulnerability in vBSEO functionsvbseohook.php Referer Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...
Open Web Analytics Password Reset Page owa_email_address Parameter SQL Injection
SQL injection vulnerability in the password reset page in Open Web Analytics OWA before 1.5.5 allows remote attackers to execute arbitrary SQL commands via the owaemailaddress parameter in a base.passwordResetRequest action to index.php. Vulnerability Type: SQL Injection For the exploit source co...
POSH /portal/addtoapplication.php rssurl Parameter SQL Injection
SQL injection vulnerability in portal/addtoapplication.php in POSH aka Posh portal or Portaneo 3.0 before 3.3.0 allows remote attackers to execute arbitrary SQL commands via the rssurl parameter. Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...
Kordil EDMS v2.2.60rc3 SQL Injection
SQL Injection vulnerability in Kordil EDMS Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...
SQLiteManager 1.2.0 LFI
Local file include vulnerability in SQLiteManager SQLiteManagercurrentTheme cookie Vulnerability Type: Local File Include For the exploit source code contact DSquare Security sales team...
CMS Made Simple 1.4.1 LFI
Local file include vulnerability in CMS Made Simple cmslanguage cookie parameter Vulnerability Type: Local File Include For the exploit source code contact DSquare Security sales team...
Oracle Secure Backup 10.2.0.2 RCE (Windows)
Remote command execution vulnerability in Oracle Secure Backup Administration Server login.php Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...
PhpGedView 4.2.3 LFI
Local file include vulnerability in PhpGedView pgvaction parameter Vulnerability Type: Local File Include For the exploit source code contact DSquare Security sales team...
Joomla Component com_jfeedback 1.2 LFI
A simple LFI Vulnerability Vulnerability Type: Local File Include For the exploit source code contact DSquare Security sales team...
Joomla Component com_powermail 1.5.3 LFI
A simple LFI Vulnerability Vulnerability Type: Local File Include For the exploit source code contact DSquare Security sales team...
Joomla Component com_jprojectmanager 1.0 LFI
A simple LFI Vulnerability Vulnerability Type: Local File Include For the exploit source code contact DSquare Security sales team...
Joomla 1.5.12 Upload
Tiny browser included with TinyMCE 3.0 editor allowed files to be uploaded and removed without logging in. Vulnerability Type: File Upload For the exploit source code contact DSquare Security sales team...
Sophos Web Protection Appliance Reports RCE
Remote command execution vulnerability in Sophos Web Protection Appliance Reports token parameter Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...
Oracle Application Testing Suite 12.4.0.2.0 File Upload
File upload vulnerability in Oracle Application Testing Suite in UploadFileUpload.do Vulnerability Type: File Upload For the exploit source code contact DSquare Security sales team...
ZeusCart 4.0 SQL Injection
SQL Injection vulnerability in ZeusCart maincatid parameter Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...
HP PCM+ SNAC Registration Server UpdateDomainControllerServlet File Upload
File upload vulnerability in HP PCM+ SNAC Registration Server UpdateDomainControllerServlet Vulnerability Type: File Upload For the exploit source code contact DSquare Security sales team...
PineApp Mail-SeCure 3.70 livelog.html RCE
Remote code execution vulnerability in PineAppMail-SeCure livelog.html Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...
Joomla 1.5.26 File Upload
File upload vulnerability in Joomla Media Manager Vulnerability Type: File Upload For the exploit source code contact DSquare Security sales team...
WordPress Cloudsafe365 1.46 File Disclosure
File disclosure vulnerability in WordPress Cloudsafe365 plugin Vulnerability Type: File Disclosure For the exploit source code contact DSquare Security sales team...
SonicWALL Scrutinizer 9.0.1 SQL Injection
SQL Injection vulnerability in SonicWALL Scrutinizer Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...