Daily Archives: February 27, 2021

Backdoor.Win32.Wollf.h Missing Authentication ≈ Packet Storm

February 27th, 2021 📆 | 8319 Views ⚑

Discovery / credits: Malvuln – malvuln.com (c) 2021Original source: https://malvuln.com/advisory/4932471df98b0e94db076f2b1c0339bd.txtContact: [email protected]: twitter.com/malvuln Threat: Backdoor.Win32.Wollf.hVulnerability: Missing AuthenticationDescription: Wollf backdoor creates a

Tagged with:




Vehicle Parking Management System 1.0 Cross Site Scripting ≈ Packet Storm

February 27th, 2021 📆 | 6656 Views ⚑

# Exploit Title: Vehicle Parking Management System 1.0 – ‘catename’ Persistent Cross-Site Scripting (XSS)# Date: 2021-02-25# Exploit Author: Tushar Vaidya#

Tagged with:




Trojan.Win32.Gofot.htx Buffer Overflow ≈ Packet Storm

February 27th, 2021 📆 | 8399 Views ⚑

Discovery / credits: Malvuln – malvuln.com (c) 2021Original source: https://malvuln.com/advisory/ae062bfe4abd59ac1b9be693fbc45f60.txtContact: [email protected]: twitter.com/malvuln Threat: Trojan.Win32.Gofot.htxVulnerability: Local File Buffer OverflowDescription: HackerJLY PE

Tagged with:




Joshua Henderson Joins Ntirety as SVP, Technology and Development – Tyler Morning Telegraph

February 27th, 2021 📆 | 8400 Views ⚑

Joshua Henderson Joins Ntirety as SVP, Technology and Development Tyler Morning Telegraph originally appeared on Source link

Tagged with:




WordPress Under Construction, Coming Soon, And Maintenance Mode 1.1.1 SSRF / XSS ≈ Packet Storm

February 27th, 2021 📆 | 2149 Views ⚑

There are SSRF and RXSS vulnerabilities in the WordPress plugin Under Construction, Coming Soon & Maintenance Mode version 1.1.1.Both vulnerabilities

Tagged with:




Simple Employee Records System 1.0 Shell Upload ≈ Packet Storm

February 27th, 2021 📆 | 7560 Views ⚑

# Exploit Title: Simple Employee Records System – File Upload RCE (Unauthenticated)# Date: 2021-02-25# Exploit Author: [email protected]# Vendor Homepage: https://www.sourcecodester.com/php/11393/employee-records-system.html#

Tagged with:




CSIOS’ President and VP of Cyberspace Operations Pick Up 2021 Cybersecurity CEO and Strategist of the Year Awards | State

February 27th, 2021 📆 | 6000 Views ⚑

CSIOS’ President and VP of Cyberspace Operations Pick Up 2021 Cybersecurity CEO and Strategist of the Year Awards | State

Tagged with:




Yeastar TG400 GSM Gateway 91.3.0.3 Path Traversal ≈ Packet Storm

February 27th, 2021 📆 | 6403 Views ⚑

Path Traversal on Yeastar TG400 GSM Gateway - 91.3.0.3This is a Proof of Concept for CVE-2021-27328Exampleto get firmware decrypting passwordhttp://192.168.43.246/cgi/WebCGI?1404=../../../../../../../../../../bin/firmware_detectto

Tagged with:




DFS Aviation Services gewinnt Airport Technology Excellence Award für einen vorbildlichen Umgang mit der Corona-Situation

February 27th, 2021 📆 | 2485 Views ⚑

Die DFS Aviation Services (DAS) überzeugte die Jury mit ihrem operativen Betriebsmodell für ihre Flughafenkunden in Deutschland. Durch dieses konnte

Tagged with:




Nagios XI 5.7.5 Remote Code Execution ≈ Packet Storm

February 27th, 2021 📆 | 2394 Views ⚑

# nagios-xi-5.7.5-bugsBugs reported to Nagios XI ## CVE-2021-25296 ### Code Location `/usr/local/nagiosxi/html/includes/configwizards/windowswmi/windowswmi.inc.php` ### Code snippet “`phpif (!empty($plugin_output_len)) {$disk_wmi_command .= ”

Tagged with:




LightCMS 1.3.4 Cross Site Scripting ≈ Packet Storm

February 27th, 2021 📆 | 8369 Views ⚑

# Exploit Title: LightCMS 1.3.4 – ‘exclusive’ Stored XSS# Date: 25/02/2021# Exploit Author: Peithon# Vendor Homepage: https://github.com/eddy8/LightCMS# Software Link: https://github.com/eddy8/LightCMS/releases/tag/v1.3.4#

Tagged with: