This Metasploit module exploits an arbitrary file download vulnerability in the DarkComet C&C server versions 3.2 and up. The exploit does not need to know the password chosen for the bot/server communication.
a1252181a85cd2650c1262e95cc84b2277e6c3314320ffa2d33bd405b810c6e2This Metasploit module exploits an arbitrary file download vulnerability in the DarkComet C&C server versions 3.2 and up. The exploit does not need to know the password chosen for the bot/server communication.
526875de4b2f6bc5ec72d1ffc0e835dfcf46ebb40dc25640bde82c28768474fdThis Metasploit module exploits a stack buffer overflow in the Poison Ivy 2.1.x C&C server. The exploit does not need to know the password chosen for the bot/server communication.
4f558f9b55f9f8cc84972af4fc3f4cdbdcf5968234547a9e4d1b6b5291586cf8HumHub versions 0.10.0 and below suffer from .htaccess file upload and remote code execution vulnerabilities.
270e4348775db45bf8d7044ae1b7d6bb66a03193fd05759df6b2527b2e04fce4Humhub versions 0.10.0-rc.1 and below suffer from insecure password validation and password reset vulnerabilities.
a0c970925cf93592f6e24c8b8beb06e6c309e87a56aa82420855febf69f24445Humhub versions 0.10.0-rc.1 and below suffer from cross site scripting and remote SQL injection vulnerabilities.
a8b814b89548826f53744a839edb39b524a3238eaea84c586c85c33e616b62acYii framework's CmsInput extension versions 1.2 and prior suffer from an improper cross site scripting sanitation implementation.
ca8da68b1474bc4281b1f32954bc5774467cd5f06b1ea17ad128a0eaed3567b7
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed