January 23rd, 2021 📆 | 6964 Views ⚑
# Exploit Title: Oracle WebLogic Server 14.1.1.0 – RCE (Authenticated)# Date: 2021-01-21# Exploit Author: Photubias # Vendor Advisory: 1] https://www.oracle.com/security-alerts/cpujan2021.html#
January 23rd, 2021 📆 | 2630 Views ⚑
Selea Targa IP OCR-ANPR Camera Remote Stored XSS Vendor: Selea s.r.l.Product web page: https://www.selea.comAffected version: Model: iZeroTarga 512Targa 504Targa SempliceTarga
January 23rd, 2021 📆 | 5288 Views ⚑
Selea Targa IP OCR-ANPR Camera Developer Backdoor Config Overwrite Vendor: Selea s.r.l.Product web page: https://www.selea.comAffected version: Model: iZeroTarga 512Targa 504Targa
January 23rd, 2021 📆 | 2102 Views ⚑
# Exploit Title: CASAP Automated Enrollment System 1.0 – Authentication Bypass# Exploit Author: Himanshu Shukla# Date: 2021-01-21# Vendor Homepage: https://www.sourcecodester.com/php/12210/casap-automated-enrollment-system.html#
January 23rd, 2021 📆 | 4967 Views ⚑
Selea Targa IP OCR-ANPR Camera Unauthenticated Directory Traversal File Disclosure Vendor: Selea s.r.l.Product web page: https://www.selea.comAffected version: Model: iZeroTarga 512Targa
January 23rd, 2021 📆 | 6195 Views ⚑
Selea Targa IP OCR-ANPR Camera Unauthenticated SSRF Vendor: Selea s.r.l.Product web page: https://www.selea.comAffected version: Model: iZeroTarga 512Targa 504Targa SempliceTarga 704
January 23rd, 2021 📆 | 5212 Views ⚑
Selea Targa IP OCR-ANPR Camera CSRF Add Admin Exploit Vendor: Selea s.r.l.Product web page: https://www.selea.comAffected version: Model: iZeroTarga 512Targa 504Targa
January 23rd, 2021 📆 | 3509 Views ⚑
Selea Targa IP OCR-ANPR Camera Unauthenticated RTP/RTSP/M-JPEG Stream Disclosure Vendor: Selea s.r.l.Product web page: https://www.selea.comAffected version: Model: iZeroTarga 512Targa 504Targa
January 22nd, 2021 📆 | 5264 Views ⚑
Discovery / credits: Malvuln – malvuln.com (c) 2021Original source: https://malvuln.com/advisory/c8f55ce7bbec784a97d7bfc6d7b1931f.txtContact: [email protected]: twitter.com/malvuln Threat: Backdoor.Win32.Hupigon.adefVulnerability: Remote Stack Buffer Overflow Description: Backdoor
January 22nd, 2021 📆 | 4460 Views ⚑
*]# Exploit Title: ERPNext 12.14.0 – SQL Injection (Authenticated)*]# Date: 21-01-21*]# Exploit Author: Hodorsec*]# Vendor Homepage: http://erpnext.org*]# Software Link: https://erpnext.org/download*]#
January 22nd, 2021 📆 | 8505 Views ⚑
#!/bin/bash## Selea Targa IP OCR-ANPR Camera Unauthenticated Remote Code Execution### Vendor: Selea s.r.l.# Product web page: https://www.selea.com# Affected version: Model:
January 22nd, 2021 📆 | 5589 Views ⚑
# Exploit Title: Atlassian Confluence Widget Connector Macro – SSTI # Date: 21-Jan-2021# Exploit Author: 46o60# Vendor Homepage: https://www.atlassian.com/software/confluence# Software
January 22nd, 2021 📆 | 2523 Views ⚑
Selea CarPlateServer (CPS) v4.0.1.6 Local Privilege Escalation Vendor: Selea s.r.l.Product web page: https://www.selea.comAffected version: 4.0.1.6(210120)4.013(201105)3.100(200225)3.005(191206)3.005(191112) Summary: Our CPS (Car Plate
January 22nd, 2021 📆 | 4716 Views ⚑
Selea CarPlateServer (CPS) v4.0.1.6 Remote Program Execution Vendor: Selea s.r.l.Product web page: https://www.selea.comAffected version: 4.0.1.6(210120)4.013(201105)3.100(200225)3.005(191206)3.005(191112) Summary: Our CPS (Car Plate
January 22nd, 2021 📆 | 4559 Views ⚑
– – – – – – – – – – – – – – – – – – – –
January 22nd, 2021 📆 | 4997 Views ⚑
Discovery / credits: Malvuln – malvuln.com (c) 2021Original source: https://malvuln.com/advisory/6b2a9304d1c7a63365db0f9fd12d39b0.txtContact: [email protected]: twitter.com/malvuln Threat: Backdoor.Win32.ZxmanVulnerability: Missing Authentication Description: Backdoor.Win32.Zxman by Zx-man
January 22nd, 2021 📆 | 4179 Views ⚑
Discovery / credits: Malvuln – malvuln.com (c) 2021Original source: https://malvuln.com/advisory/ba815d409cd714c0eac010b5970f6408.txtContact: [email protected]: twitter.com/malvuln Threat: Backdoor.Win32.OnalfVulnerability: Missing AuthenticationDescription: WinRemoteShell (Onalf) listens for
January 22nd, 2021 📆 | 3720 Views ⚑
# Exploit Title: Online Documents Sharing Platform 1.0 – ‘user’ SQL Injection# Date: 21.01.2021# Exploit Author: CANKAT ÇAKMAK# Vendor Homepage:
January 22nd, 2021 📆 | 1635 Views ⚑
# Exploit Title: Apartment Visitors Management System 1.0 – ’email’ SQL Injection# Date: 20.01.2021# Exploit Author: CANKAT ÇAKMAK# Vendor Homepage:
January 22nd, 2021 📆 | 3826 Views ⚑
Discovery / credits: Malvuln – malvuln.com (c) 2021Original source: https://malvuln.com/advisory/56a2b135c8d35561ea5b04694155eb77.txtContact: [email protected]: twitter.com/malvuln Threat: Backdoor.Win32.WinShell.30Vulnerability: Remote Stack Buffer Overflow / Missing
Windows 10 bug corrupts your hard drive on seeing… January 15, 2021 An unpatched zero-day in Microsoft Windows 10 allows attackers to…
4 Most Common Types of Cybersecurity Threats December 25, 2020 There’s every indication that the pandemic is changing the…
Rioters Open Capitol’s Doors to Potential Cyberthreats January 7, 2021 Business Continuity Management / Disaster Recovery , Critical Infrastructure Security…
Windows 10 X: Features and Improvements January 16, 2021 It was disheartening when Microsoft announced that there would not…
Samsung Galaxy Buds Pro: Review and Buying Guide January 16, 2021 Samsung is clearly aiming for the accessories markets too, with…![[webapps] Sony Playstation 4 (PS4) < 7.02 - 'ValidationMessage::buildBubbleTree()' Use-After-Free WebKit Code Execution (PoC)](https://www.digitalmunition.me/wp-content/uploads/spider-orange.png "[webapps] Sony Playstation 4 (PS4) < 7.02 - 'ValidationMessage::buildBubbleTree()' Use-After-Free WebKit Code Execution (PoC)"){kind=small}
[webapps] Sony Playstation 4 (PS4) < 7.02 -… December 26, 2020 Sony Playstation 4 (PS4) < 7.02 - 'ValidationMessage::buildBubbleTree()' Use-After-Free WebKit…
PS5 Back in Stock? January 21, 2021 Nothing made more ripples in the tech community apart from…
Comments