IncomCMS 2.0 – Insecure File Upload
January 10th, 2021 📆 | 7771 Views ⚑
# Exploit Title: IncomCMS 2.0 - Insecure File Upload # Google Dork: intext:"Incom CMS 2.0" # Date: 07.12.2020 # Exploit
January 10th, 2021 📆 | 7771 Views ⚑
# Exploit Title: IncomCMS 2.0 - Insecure File Upload # Google Dork: intext:"Incom CMS 2.0" # Date: 07.12.2020 # Exploit
January 10th, 2021 📆 | 1766 Views ⚑
# Exploit Title: Fluentd TD-agent plugin 4.0.1 - Insecure Folder Permission # Date: 21.12.2020 # Exploit Author: Adrian Bondocea #
January 9th, 2021 📆 | 3483 Views ⚑
# Exploit Title: WinAVR Version 20100110 - Insecure Folder Permissions # Date: 2020-12-11 # Exploit Author: Mohammed Alshehri # Vendor
January 8th, 2021 📆 | 5704 Views ⚑
Discovery / credits: malvuln – Malvuln.com (c) 2021Original source: https://malvuln.com/advisory/bba63df41adcf2cf80c74e4a62539d44.txtContact: [email protected]: twitter.com/malvuln Threat: Backdoor.Win32.Agent.dcbhVulnerability: Insecure Permissions EoPDescription: Drops an executable
January 8th, 2021 📆 | 2208 Views ⚑
Discovery / credits: malvuln – Malvuln.com (c) 2021Original source: https://malvuln.com/advisory/7bd93c10c9373cfc2bcc8eff712631f1.txtContact: [email protected]: twitter.com/malvuln Threat: Backdoor.Win32.Xtreme.yvpVulnerability: Insecure Permissions EoPDescription: Change permissions are
January 7th, 2021 📆 | 4812 Views ⚑
# Exploit Title: Newgen Correspondence Management System (corms) eGov 12.0 – IDOR# Date: 29 Dec 2020# Exploit Author: ALI AL
January 7th, 2021 📆 | 1527 Views ⚑
# Exploit Title: WinAVR Version 20100110 – Insecure Folder Permissions# Date: 2020-12-11# Exploit Author: Mohammed Alshehri# Vendor Homepage: https://sourceforge.net/projects/winavr/# Software
January 6th, 2021 📆 | 1766 Views ⚑
# Exploit Title: Fluentd TD-agent plugin 4.0.1 – Insecure Folder Permission# Date: 21.12.2020# Exploit Author: Adrian Bondocea# Vendor Homepage: https://www.fluentd.org/#
January 5th, 2021 📆 | 2493 Views ⚑
Discovery / credits: malvuln – Malvuln.com (c) 2021Original source: http://malvuln.com/advisory/099a169f81089dc493ea300ef0309f70.txtContact: [email protected]: twitter.com/malvuln Threat: Trojan.Win32.Bayrob.cgauVulnerability: Insecure Permissions EoP (SYSTEM)Description: Change permissions
January 5th, 2021 📆 | 2496 Views ⚑
Discovery / credits: malvuln – Malvuln.com (c) 2021Original source: http://malvuln.com/advisory/82183b3d85311a39fb80ae07357594e5.txtContact: [email protected]: twitter.com/malvuln Threat: BACKDOOR.WIN32.REMOTEMANIPULATORVulnerability: Insecure PermissionsDescription: Creates a dir Folder139
January 4th, 2021 📆 | 7307 Views ⚑
Discovery / credits: malvuln – Malvuln.com (c) 2021Original source: http://malvuln.com/advisory/f4d7d721f68bc9a80aaf53bc184a3c58.txtContact: [email protected]: twitter.com/malvuln Threat: PhorpiexVulnerability: Insecure permissions EoPDescription: Change permissions are
December 18th, 2020 📆 | 7293 Views ⚑
Programi Bilanc – Build 007 Release 014 31.01.2020 – Software-update packages are downloaded via unencrypted HTTP =============================================================================== Identifiers ————————————————- CVE-2020-11718
December 12th, 2020 📆 | 4899 Views ⚑
Title: Missing access controls Product: OpenAsset Digital Asset Management by OpenAsset Vendor Homepage: https://www.openasset.com/ Vulnerable Version: 12.0.19 (Cloud) 11.2.1 (On-premise)
December 10th, 2020 📆 | 6244 Views ⚑
# Exploit Title: Employee Performance Evaluation System 1.0 – Able to delete Admin user from Local account Unauthenticated Insecure Direct
December 3rd, 2020 📆 | 4609 Views ⚑
Sony BRAVIA Digital Signage 1.7.8 Client-Side Protection Bypass / IDOR Vendor: Sony Electronics Inc.Product web page: https://pro-bravia.sony.nethttps://pro-bravia.sony.net/resources/software/bravia-signage/https://pro.sony/ue_US/products/display-softwareAffected version: < =1.7.8
December 2nd, 2020 📆 | 2888 Views ⚑
John Leyden 02 December 2020 at 16:50 UTC Updated: 02 December 2020 at 17:19 UTC There’s something nasty in that
December 2nd, 2020 📆 | 1788 Views ⚑
There’s something nasty in that container Cybercriminals have been caught exploiting misconfigured Docker installations to spread crypto-mining malware. Researchers at
November 20th, 2020 📆 | 3684 Views ⚑
KL-001-2020-009 : Barco wePresent Insecure Firmware Image Title: Barco wePresent Insecure Firmware ImageAdvisory ID: KL-001-2020-009Publication Date: 2020.11.20Publication URL: https://korelogic.com/Resources/Advisories/KL-001-2020-009.txt 1.
October 28th, 2020 📆 | 4586 Views ⚑
TDM Digital Signage PC Player 4.1 Insecure File Permissions Vendor: TDM Trending Digital Marketing]Product web page: https://www.tdmsignage.comhttps://pro.sony/en_NL/products/display-software/tdm-ds1y-tdm-ds3yAffected version: 4.1.0.4 Summary:
October 27th, 2020 📆 | 4132 Views ⚑
# Exploit Title: TDM Digital Signage PC Player 4.1 - Insecure File Permissions # Date: 2020-09-23 # Exploit Author: LiquidWorm
Comments