Lucene search
K
ExploitdbRecent

47904 matches found

Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.94 views

Wondershare Application Framework Service - "WsAppService" Unquote Service Path

Exploit Title: Wondershare Application Framework Service - "WsAppService" Unquote Service Path Google Dork: N/A Date: 2019-11-11 Exploit Author: chuyreds Vendor Homepage: https://www.wondershare.com/ Software Link: https://www.wondershare.com/drfone/ Version: 2.4.3.231 Tested on: Windows 10 Home...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.194 views

FlexAir Access Control 2.3.35 - Authentication Bypass

Exploit Title: FlexAir Access Control 2.3.35 - Authentication Bypass Google Dork: NA Date: 2019-11-11 Exploit Author: LiquidWorm Vendor Homepage: https://www.computrols.com/capabilities-cbas-web/ Software Link: https://www.computrols.com/building-automation-software/ Version: 2.3.35 Tested on: NA...

9.8CVSS9.5AI score0.1482EPSS
Exploits6
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.305 views

Optergy 2.3.0a - Remote Code Execution (Backdoor)

Title: Optergy 2.3.0a - Remote Code Execution Author: LiquidWorm Date: 2019-11-05 Vendor: https://optergy.com/ Product web page: https://optergy.com/products/ Affected version: \n' sys.exit while True: challengeurl = 'http://'+sys.argv1+'/tools/ajax/ConsoleResult.html?get' try: req1 =...

10CVSS9.8AI score0.93384EPSS
Exploits7
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.93 views

Bematech Printer MP-4200 - Denial of Service

Exploit Title: Bematech Printer MP-4200 - Denial of Service Date: 2019-11-11 Exploit Author: Jonatas Fil Vendor Homepage: https://www.bematech.com.br/ Software Link: https://www.bematech.com.br/produto/mp-4200-th/ Version: MP-4200 TH Tested on: Windows and Linux CVE : N/A DoS Poc:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.205 views

Alps Pointing-device Controller 8.1202.1711.04 - 'ApHidMonitorService' Unquoted Service Path

Exploit Title: Alps Pointing-device Controller 8.1202.1711.04 - 'ApHidMonitorService' Unquoted Service Path Date: 2019-11-12 Exploit Author: Mario Rodriguez Vendor Homepage: https://www.alps.com/e/ Software Link: https://www.alps.com/e/ Version: 8.1202.1711.04 Tested on: Windows 10 Home x64 Spani...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.185 views

FlexAir Access Control 2.4.9api3 - Remote Code Execution

Exploit Title: FlexAir Access Control 2.4.9api3 - Remote Code Execution Google Dork: NA Date: 2019-11-11 Exploit Author: LiquidWorm Vendor Homepage: https://www.computrols.com/capabilities-cbas-web/ Software Link: https://www.computrols.com/building-automation-software/ Version: 2.4.9api3 Tested...

9CVSS7AI score0.1163EPSS
Exploits7
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.252 views

RTK IIS Codec Service 6.4.10041.133 - 'RtkI2SCodec' Unquote Service Path

Exploit Title: RTK IIS Codec Service 6.4.10041.133 - 'RtkI2SCodec' Unquote Service Path Google Dork: N/A Date: 2019-11-11 Exploit Author: chuyreds Vendor Homepage:https://www.realtek.com/en/ Software Link:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.115 views

Optergy 2.3.0a - Username Disclosure

Title: Optergy 2.3.0a - Username Disclosure Author: LiquidWorm Date: 2019-11-05 Vendor: https://optergy.com/ Product web page: https://optergy.com/products/ Affected version: djuro teppi view alerton stef humba drmio de3 andri myko dzonka kosto beebee Administrator...

5.3CVSS6.1AI score0.10469EPSS
Exploits5
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.113 views

Computrols CBAS-Web 19.0.0 - 'username' Reflected Cross-Site Scripting

Exploit Title: Computrols CBAS-Web 19.0.0 - 'username' Reflected Cross-Site Scripting Google Dork: NA Date: 2018-09-06 Exploit Author: LiquidWorm Vendor Homepage: https://www.computrols.com/capabilities-cbas-web/ Software Link: https://www.computrols.com/building-automation-software/ Version:...

6.1CVSS6.5AI score0.04662EPSS
Exploits4
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.111 views

Control Center PRO 6.2.9 - Local Stack Based Buffer Overflow (SEH)

Exploit Title: Control Center PRO 6.2.9 - Local Stack Based BufferOverflow SEH Date: 2019-11-09 Exploit Author: Samir sanchez garnica @sasaga92 Vendor Homepage: http://www.webgateinc.com/wgi/eng/products/list.php?ecidx1=P610 Software Link:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.227 views

Atlassian Confluence 6.15.1 - Directory Traversal (Metasploit)

Exploit Title: Atlassian Confluence 6.15.1 - Directory Traversal Metasploit Google Dork: N/A Date: 2019-11-11 Exploit Author: max7253 Vendor Homepage: https://www.atlassian.com Software Link: https://www.atlassian.com/software/confluence/download-archives Version: 6.15.1 Tested on: Microsoft...

9CVSS9AI score0.97153EPSS
Exploits10
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.82 views

Wondershare Application Framework Service 2.4.3.231 - 'WsAppService' Unquote Service Path

Exploit Title: Wondershare Application Framework Service 2.4.3.231 - 'WsAppService' Unquote Service Path Google Dork: N/A Date: 2019-11-11 Exploit Author: chuyreds Vendor Homepage: https://www.wondershare.com/ Software Link: https://www.wondershare.com/drfone/ Version: 2.4.3.231 Tested on: Window...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.125 views

CBAS-Web 19.0.0 - Remote Code Execution

Exploit Title: CBAS-Web 19.0.0 - Remote Code Execution Google Dork: NA Date: 2019-11-11 Exploit Author: LiquidWorm Vendor Homepage: https://www.computrols.com/capabilities-cbas-web/ Software Link: https://www.computrols.com/building-automation-software/ Version: 19.0.0 Tested on: NA CVE : N/A...

9CVSS7.4AI score0.02991EPSS
Exploits4
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.312 views

Atlassian Confluence 6.15.1 - Directory Traversal

Exploit Title: Atlassian Confluence 6.15.1 - Directory Traversal Google Dork: N/A Date: 2019-11-11 Exploit Author: max7253 Vendor Homepage: https://www.atlassian.com Software Link: https://www.atlassian.com/software/confluence/download-archives Version: 6.15.1 Tested on: Microsoft Windows 7...

9CVSS9AI score0.97153EPSS
Exploits10
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.199 views

eMerge E3 1.00-06 - Cross-Site Request Forgery

Exploit Title: eMerge E3 1.00-06 - Cross-Site Request Forgery Google Dork: NA Date: 2018-11-11 Exploit Author: LiquidWorm Vendor Homepage: http://linear-solutions.com/nscfamily/e3-series/ Software Link: http://linear-solutions.com/nscfamily/e3-series/ Version: 1.00-06 Tested on: NA CVE :...

8.8CVSS9AI score0.16278EPSS
Exploits5
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.183 views

Prima Access Control 2.3.35 - Arbitrary File Upload

Exploit Title: Prima Access Control 2.3.35 - Arbitrary File Upload Google Dork: NA Date: 2019-11-11 Exploit Author: LiquidWorm Vendor Homepage: https://www.computrols.com/capabilities-cbas-web/ Software Link: https://www.computrols.com/building-automation-software/ Version: 2.3.35 Tested on: NA C...

9CVSS9AI score0.1163EPSS
Exploits7
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.115 views

Optergy 2.3.0a - Cross-Site Request Forgery (Add Admin)

Title: Optergy 2.3.0a - Cross-Site Request Forgery Add Admin Author: LiquidWorm Date: 2019-11-05 Vendor: https://optergy.com/ Product web page: https://optergy.com/products/ Affected version: history.pushState'', '', '/'...

8.8CVSS9AI score0.04476EPSS
Exploits4
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.169 views

eMerge E3 1.00-06 - Unauthenticated Directory Traversal

Exploit Title: eMerge E3 1.00-06 - Unauthenticated Directory Traversal Google Dork: NA Date: 2018-09-11 Exploit Author: LiquidWorm Vendor Homepage: http://linear-solutions.com/nscfamily/e3-series/ Software Link: http://linear-solutions.com/nscfamily/e3-series/ Version: 1.00-06 Tested on: NA CVE :...

7.5CVSS7.9AI score0.82036EPSS
Exploits8
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.363 views

eMerge E3 Access Controller 4.6.07 - Remote Code Execution

Exploit Title: eMerge E3 Access Controller 4.6.07 - Remote Code Execution Google Dork: NA Date: 2018-11-11 Exploit Author: LiquidWorm Vendor Homepage: http://linear-solutions.com/nscfamily/e3-series/ Software Link: http://linear-solutions.com/nscfamily/e3-series/ Version: 4.6.07 Tested on: NA CVE...

10CVSS7.8AI score0.23123EPSS
Exploits16
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.180 views

CBAS-Web 19.0.0 - 'id' Boolean-based Blind SQL Injection

Exploit Title: CBAS-Web 19.0.0 - 'id' Boolean-based Blind SQL Injection Google Dork: NA Date: 2019-11-11 Exploit Author: LiquidWorm Vendor Homepage: https://www.computrols.com/capabilities-cbas-web/ Software Link: https://www.computrols.com/building-automation-software/ Version: 19.0.0 Tested on:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.149 views

Acronis True Image OEM 19.0.5128 - 'afcdpsrv' Unquoted Service Path

Exploit Title: Acronis True Image OEM 19.0.5128 - 'afcdpsrv' Unquoted Service Path Date: 2019-11-11 Author: Alejandra Sánchez Vendor Homepage: https://www.acronis.com Software: ftp://supportdownload:[email protected]/AcronisTrueImageOEM5128.exe Version: 19.0.5128 Tested on: Windows...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.72 views

Adrenalin Core HCM 5.4.0 - 'prntDDLCntrlName' Reflected Cross-Site Scripting

Exploit Title: Adrenalin Core HCM 5.4.0 - 'prntDDLCntrlName' Reflected Cross-Site Scripting Google Dork: NA Date: 2018-09-06 Exploit Author: Rishu Ranjan Cy83rl0gger Vendor Homepage: https://www.myadrenalin.com/ Software Link: https://www.myadrenalin.com/core-hcm/ Version: 5.4.0 REQUIRED Tested o...

6.1CVSS6.5AI score0.02607EPSS
Exploits5
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.140 views

Prima FlexAir Access Control 2.3.38 - Remote Code Execution

Exploit Title: Prima FlexAir Access Control 2.3.38 - Remote Code Execution Google Dork: NA Date: 2018-09-06 Exploit Author: LiquidWorm Vendor Homepage: https://www.primasystems.eu/ Software Link: https://primasystems.eu/flexair-access-control/ Version: 2.3.38 Tested on: NA CVE : CVE-2019-7670...

9CVSS7.4AI score0.18306EPSS
Exploits5
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.116 views

eMerge E3 1.00-06 - Privilege Escalation

Exploit Title: eMerge E3 1.00-06 - Privilege Escalation Google Dork: NA Date: 2018-09-11 Exploit Author: LiquidWorm Vendor Homepage: http://linear-solutions.com/nscfamily/e3-series/ Software Link: http://linear-solutions.com/nscfamily/e3-series/ Version: 1.00-06 Tested on: NA CVE : CVE-2019-7254,...

8.8CVSS8.4AI score0.82036EPSS
Exploits10
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.166 views

Adrenalin Core HCM 5.4.0 - 'strAction' Reflected Cross-Site Scripting

Exploit Title: Adrenalin Core HCM 5.4.0 - 'strAction' Reflected Cross-Site Scripting Google Dork: NA Date: 2018-09-06 Exploit Author: Rishu Ranjan Cy83rl0gger Vendor Homepage: https://www.myadrenalin.com/ Software Link: https://www.myadrenalin.com/core-hcm/ Version: 5.4.0 REQUIRED Tested on: NA C...

6.1CVSS7AI score0.02946EPSS
Exploits5
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.126 views

eMerge E3 1.00-06 - Remote Code Execution

Exploit Title: eMerge E3 1.00-06 - Remote Code Execution Google Dork: NA Date: 2018-09-11 Exploit Author: LiquidWorm Vendor Homepage: http://linear-solutions.com/nscfamily/e3-series/ Software Link: http://linear-solutions.com/nscfamily/e3-series/ Version: 1.00-06 Tested on: NA CVE : CVE-2019-7256...

10CVSS9.7AI score0.97136EPSS
Exploits16
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.121 views

Optergy 2.3.0a - Remote Code Execution

Title: Optergy 2.3.0a - Remote Code Execution Author: LiquidWorm Date: 2019-11-05 Vendor: https://optergy.com/ Product web page: https://optergy.com/products/ Affected version: =2.3.0a Advisory: https://applied-risk.com/resources/ar-2019-008 Paper:...

10CVSS9.8AI score0.29043EPSS
Exploits5
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.139 views

eMerge E3 1.00-06 - Arbitrary File Upload

Exploit Title: eMerge E3 1.00-06 - Arbitrary File Upload Google Dork: NA Date: 2018-11-11 Exploit Author: LiquidWorm Vendor Homepage: http://linear-solutions.com/nscfamily/e3-series/ Software Link: http://linear-solutions.com/nscfamily/e3-series/ Version: 1.00-06 Tested on: NA CVE : CVE-2019-7257...

10CVSS7AI score0.69992EPSS
Exploits5
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.98 views

CBAS-Web 19.0.0 - Cross-Site Request Forgery (Add Super Admin)

Exploit Title: CBAS-Web 19.0.0 - Cross-Site Request Forgery Add Super Admin Google Dork: NA Date: 2019-11-11 Exploit Author: LiquidWorm Vendor Homepage: https://www.computrols.com/capabilities-cbas-web/ Software Link: https://www.computrols.com/building-automation-software/ Version: 19.0.0 Tested...

8.8CVSS7.7AI score0.0242EPSS
Exploits4
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.221 views

eMerge E3 Access Controller 4.6.07 - Remote Code Execution (Metasploit)

Exploit Title: eMerge E3 Access Controller 4.6.07 - Remote Code Execution Metasploit Google Dork: NA Date: 2018-11-11 Exploit Author: LiquidWorm Vendor Homepage: http://linear-solutions.com/nscfamily/e3-series/ Software Link: http://linear-solutions.com/nscfamily/e3-series/ Version: 4.6.07 Tested...

10CVSS9.8AI score0.23123EPSS
Exploits8
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.160 views

eMerge E3 1.00-06 - 'layout' Reflected Cross-Site Scripting

Exploit Title: eMerge E3 1.00-06 - 'layout' Reflected Cross-Site Scripting Google Dork: NA Date: 2018-11-11 Exploit Author: LiquidWorm Vendor Homepage: http://linear-solutions.com/nscfamily/e3-series/ Software Link: http://linear-solutions.com/nscfamily/e3-series/ Version: 1.00-06 Tested on: NA C...

6.1CVSS7AI score0.55807EPSS
Exploits5
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.128 views

CBAS-Web 19.0.0 - Information Disclosure

Exploit Title: CBAS-Web 19.0.0 - Information Disclosure Google Dork: NA Date: 2019-11-11 Exploit Author: LiquidWorm Vendor Homepage: https://www.computrols.com/capabilities-cbas-web/ Software Link: https://www.computrols.com/building-automation-software/ Version: 19.0.0 Tested on: NA CVE :...

7.5CVSS7.1AI score0.09012EPSS
Exploits4
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.130 views

CBAS-Web 19.0.0 - Username Enumeration

Exploit Title: CBAS-Web 19.0.0 - Username Enumeration Google Dork: NA Date: 2019-11-11 Exploit Author: LiquidWorm Vendor Homepage: https://www.computrols.com/capabilities-cbas-web/ Software Link: https://www.computrols.com/building-automation-software/ Version: 19.0.0 Tested on: NA CVE :...

5.3CVSS5.8AI score0.08489EPSS
Exploits4
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.123 views

Prima Access Control 2.3.35 - 'HwName' Persistent Cross-Site Scripting

Exploit Title: Prima Access Control 2.3.35 - 'HwName' Persistent Cross-Site Scripting Google Dork: NA Date: 2019-11-11 Exploit Author: LiquidWorm Vendor Homepage: https://www.computrols.com/capabilities-cbas-web/ Software Link: https://www.computrols.com/building-automation-software/ Version:...

9CVSS7AI score0.08256EPSS
Exploits5
Exploit DB
Exploit DB
added 2019/11/11 12:0 a.m.350 views

Adobe Acrobat Reader DC for Windows - Use of Uninitialized Pointer due to Malformed JBIG2Globals Stream

We have observed the following access violation exception in the latest version of Adobe Acrobat Reader DC for Windows, when opening a malformed PDF file: --- cut --- 88e4.30f4: Access violation - code c0000005 first chance First chance exceptions are reported before any exception handling. This...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/11/11 12:0 a.m.416 views

iOS IOUSBDeviceFamily 12.4.1 - 'IOInterruptEventSource' Heap Corruption (PoC)

Exploit Title: iOS IOUSBDeviceFamily 12.4.1 - 'IOInterruptEventSource' Heap Corruption PoC Date: 2019-10-29 Exploit Author: Sem Voigtlander, Joshua Hill and Raz Mashat Vendor Homepage: https://apple.com/ Software Link: https://support.apple.com/en-hk/HT210606 Version: iOS 13 Tested on: iOS 12.4.1...

9.3CVSS9AI score0.01235EPSS
Exploits4
Exploit DB
Exploit DB
added 2019/11/11 12:0 a.m.297 views

XML Notepad 2.8.0.4 - XML External Entity Injection

Exploit Title: XML Notepad 2.8.0.4 - XML External Entity Injection Date: 2019-11-11 Exploit Author: 8-Team / daejinoh Vendor Homepage: https://www.microsoft.com/ Software Link: https://github.com/microsoft/XmlNotepad Version: XML Notepad 2.8.0.4 Tested on: Windows 10 Pro CVE : N/A Step 1 File -...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/11/11 12:0 a.m.462 views

Alps HID Monitor Service 8.1.0.10 - 'ApHidMonitorService' Unquote Service Path

Exploit Title: Alps HID Monitor Service 8.1.0.10 - 'ApHidMonitorService' Unquote Service Path Date: 2019-11-07 Exploit Author: Héctor Gabriel Chimecatl Hernández Vendor Homepage: https://www.alps.com/e/ Software Link: https://www.alps.com/e/ Version: 8.1.0.10 Tested on: Windows 10 Home Single...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/11/11 12:0 a.m.284 views

Adobe Acrobat Reader DC for Windows - Use of Uninitialized Pointer due to Malformed OTF Font (CFF Table)

We have observed the following access violation exception in the latest version of Adobe Acrobat Reader DC for Windows, when opening a malformed PDF file: --- cut --- 5708.4564: Access violation - code c0000005 first chance First chance exceptions are reported before any exception handling. This...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/11/11 12:0 a.m.304 views

iMessage - Decoding NSSharedKeyDictionary can read ObjC Object at Attacker Controlled Address

During processing of incoming iMessages, attacker controlled data is deserialized using the NSUnarchiver API. One of the classes that is allowed to be decoded from the incoming data is NSDictionary. However, due to the logic of NSUnarchiver, all subclasses of NSDictionary that also implement secu...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/11/11 12:0 a.m.414 views

_GCafé 3.0 - 'gbClienService' Unquoted Service Path

Exploit Title: GCafé 3.0 - 'gbClienService' Unquoted Service Path Google Dork: N/A Date: 2019-11-09 Exploit Author: Doan Nguyen 4ll4u Vendor Homepage: https://gcafe.vn/ Software Link: https://gcafe.vn/post/view?slug=gcafe-3.0 Version: v3.0 Tested on: Windows 7, Win 10, WinXP CVE : N/A Description...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/11/08 12:0 a.m.673 views

Android Janus - APK Signature Bypass (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core/payload/apk' class MetasploitModule "Android Janus APK Signature bypass", 'Description' = %q This module exploits CVE-2017-13156 in Android to install ...

7.8CVSS7.8AI score0.20089EPSS
Exploits9
Exploit DB
Exploit DB
added 2019/11/08 12:0 a.m.285 views

Adive Framework 2.0.7 - Privilege Escalation

Exploit Title: Adive Framework 2.0.7 - Privilege Escalation Date: 2019-08-02 Exploit Author: Pablo Santiago Vendor Homepage: https://www.adive.es/ Software Link: https://github.com/ferdinandmartin/adive-php7 Version: 2.0.7 Tested on: Windows 10 CVE : CVE-2019-14347 Exploit import requests import...

8.8CVSS9AI score0.09313EPSS
Exploits5
Exploit DB
Exploit DB
added 2019/11/08 12:0 a.m.643 views

SolarWinds Kiwi Syslog Server 8.3.52 - 'Kiwi Syslog Server' Unquoted Service Path

Exploit Title: SolarWinds Kiwi Syslog Server 8.3.52 - 'Kiwi Syslog Server' Unquoted Service Path Date: 2019-11-08 Exploit Author: Carlos A Garcia R Vendor Homepage: https://www.kiwisyslog.com/ Software Link: https://www.kiwisyslog.com/downloads Version: 8.3.52 Tested on: Windows XP Professional...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/11/08 12:0 a.m.374 views

Nextcloud 17 - Cross-Site Request Forgery

Exploit Title: Nextcloud 17 - Cross-Site Request Forgery Date: 08.11.2019 Exploit Author: Ozer Goker Vendor Homepage: https://nextcloud.com Software Link: https://nextcloud.com/install/instructions-server Version: 17 CVE: N/A Nextcloud offers the industry-leading, on-premises content collaboratio...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/11/08 12:0 a.m.469 views

rConfig - install Command Execution (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'rConfig install Command Execution', 'Description' = %q This module exploits an unauthenticated command injection vulnerability in rConfig version...

9.5AI score
Exploits0
Exploit DB
Exploit DB
added 2019/11/08 12:0 a.m.331 views

Jenkins build-metrics plugin 1.3 - 'label' Cross-Site Scripting

Exploit Title: Jenkins build-metrics plugin 1.3 - 'label' Cross-Site Scripting Date: 2019-11-06 Exploit Author: vesche Austin Jackson Vendor Homepage: https://plugins.jenkins.io/build-metrics Version: Jenkins build-metrics plugin 1.3 and below Tested on: Debian 10 Buster, Jenkins 2.203 latest...

6.1CVSS6.5AI score0.57735EPSS
Exploits5
Exploit DB
Exploit DB
added 2019/11/07 12:0 a.m.569 views

Adaware Web Companion version 4.8.2078.3950 - 'WCAssistantService' Unquoted Service Path

Exploit Title: Adaware Web Companion version 4.8.2078.3950 - 'WCAssistantService' Unquoted Service Path Date: 2019-11-06 Exploit Author: Mariela L Martínez Hdez Vendor Homepage: https://webcompanion.com/en/ Software Link: https://webcompanion.com/en/ Version: Adaware Web Companion version...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/11/06 12:0 a.m.987 views

Wacom WTabletService 6.6.7-3 - 'WTabletServicePro' Unquoted Service Path

Exploit Title: Wacom WTabletService 6.6.7-3 - 'WTabletServicePro' Unquoted Service Path Discovery by: Marcos Antonio León psk Discovery Date: 2019-11-04 Vendor Homepage: https://www.wacom.com Software Link : http://cdn.wacom.com/U/drivers/IBMPC/pro/WacomTablet637-3.exe Tested Version: 6.3.7.3...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/11/06 12:0 a.m.284 views

Smartwares HOME easy 1.0.9 - Database Backup Information Disclosure

Title: Smartwares HOME easy 1.0.9 - Database Backup Information Disclosure Author: LiquidWorm Date: 2019-11-05 Vendor: Smartwares Product web page: https://www.smartwares.eu Affected version: =1.0.9 Advisory ID: ZSL-2019-5541 Advisory URL:...

7.4AI score
Exploits0
Total number of security vulnerabilities47904