FreshRSS

๐Ÿ”’
โŒ About FreshRSS
โ˜ท
โ–ณ ๐Ÿ”ƒ
There are new available articles, click to refresh the page.
Before yesterdayExploit-DB Updates

[webapps] PHPFusion 9.10.30 - Stored Cross-Site Scripting (XSS)

PHPFusion 9.10.30 - Stored Cross-Site Scripting (XSS)
  • May 2nd 2023 at 00:00
  • โ†—

[webapps] OpenEMR v7.0.1 - Authentication credentials brute force

OpenEMR v7.0.1 - Authentication credentials brute force
  • May 2nd 2023 at 00:00
  • โ†—

[webapps] admidio v4.2.5 - CSV Injection

admidio v4.2.5 - CSV Injection
  • May 2nd 2023 at 00:00
  • โ†—

[local] MilleGPG5 5.9.2 (Gennaio 2023) - Local Privilege Escalation / Incorrect Access Control

MilleGPG5 5.9.2 (Gennaio 2023) - Local Privilege Escalation / Incorrect Access Control
  • May 2nd 2023 at 00:00
  • โ†—

[webapps] Serendipity 2.4.0 - File Inclusion RCE

Serendipity 2.4.0 - File Inclusion RCE
  • May 2nd 2023 at 00:00
  • โ†—

[webapps] Companymaps v8.0 - Stored Cross Site Scripting (XSS)

Companymaps v8.0 - Stored Cross Site Scripting (XSS)
  • May 2nd 2023 at 00:00
  • โ†—

[webapps] SoftExpert (SE) Suite v2.1.3 - Local File Inclusion

SoftExpert (SE) Suite v2.1.3 - Local File Inclusion
  • May 2nd 2023 at 00:00
  • โ†—

[webapps] PHPJabbers Simple CMS V5.0 - Stored Cross-Site Scripting (XSS)

PHPJabbers Simple CMS V5.0 - Stored Cross-Site Scripting (XSS)
  • May 2nd 2023 at 00:00
  • โ†—

[webapps] GLPI 9.5.7 - Username Enumeration

GLPI 9.5.7 - Username Enumeration
  • May 2nd 2023 at 00:00
  • โ†—

[webapps] PHPJabbers Simple CMS 5.0 - SQL Injection

PHPJabbers Simple CMS 5.0 - SQL Injection
  • May 2nd 2023 at 00:00
  • โ†—

[local] FS-S3900-24T4S - Privilege Escalation

FS-S3900-24T4S - Privilege Escalation
  • May 2nd 2023 at 00:00
  • โ†—

[local] Advanced Host Monitor v12.56 - Unquoted Service Path

Advanced Host Monitor v12.56 - Unquoted Service Path
  • May 2nd 2023 at 00:00
  • โ†—

[webapps] phpMyFAQ v3.1.12 - CSV Injection

phpMyFAQ v3.1.12 - CSV Injection
  • May 2nd 2023 at 00:00
  • โ†—

[webapps] PHP Restaurants 1.0 - SQLi Authentication Bypass & Cross Site Scripting

PHP Restaurants 1.0 - SQLi Authentication Bypass & Cross Site Scripting
  • May 2nd 2023 at 00:00
  • โ†—

[webapps] revive-adserver v5.4.1 - Cross-Site Scripting (XSS)

revive-adserver v5.4.1 - Cross-Site Scripting (XSS)
  • May 2nd 2023 at 00:00
  • โ†—

[webapps] projectSend r1605 - Private file download

projectSend r1605 - Private file download
  • May 2nd 2023 at 00:00
  • โ†—

[webapps] ChurchCRM v4.5.3 - Authenticated SQL Injection

ChurchCRM v4.5.3 - Authenticated SQL Injection
  • April 27th 2023 at 00:00
  • โ†—

[webapps] Sophos Web Appliance 4.3.10.4 - Pre-auth command injection

Sophos Web Appliance 4.3.10.4 - Pre-auth command injection
  • April 25th 2023 at 00:00
  • โ†—

[local] OCS Inventory NG 2.3.0.0 - Unquoted Service Path

OCS Inventory NG 2.3.0.0 - Unquoted Service Path
  • April 25th 2023 at 00:00
  • โ†—

[webapps] PaperCut NG/MG 22.0.4 - Authentication Bypass

PaperCut NG/MG 22.0.4 - Authentication Bypass
  • April 25th 2023 at 00:00
  • โ†—

[local] Wondershare Filmora 12.2.9.2233 - Unquoted Service Path

Wondershare Filmora 12.2.9.2233 - Unquoted Service Path
  • April 25th 2023 at 00:00
  • โ†—

[webapps] Multi-Vendor Online Groceries Management System 1.0 - Remote Code Execution

Multi-Vendor Online Groceries Management System 1.0 - Remote Code Execution
  • April 25th 2023 at 00:00
  • โ†—

[local] Arcsoft PhotoStudio 6.0.0.172 - Unquoted Service Path

Arcsoft PhotoStudio 6.0.0.172 - Unquoted Service Path
  • April 25th 2023 at 00:00
  • โ†—

[webapps] KodExplorer 4.49 - CSRF to Arbitrary File Upload

KodExplorer 4.49 - CSRF to Arbitrary File Upload
  • April 25th 2023 at 00:00
  • โ†—

[webapps] Mars Stealer 8.3 - Admin Account Takeover

Mars Stealer 8.3 - Admin Account Takeover
  • April 25th 2023 at 00:00
  • โ†—

[webapps] FUXA V.1.1.13-1186 - Unauthenticated Remote Code Execution (RCE)

FUXA V.1.1.13-1186 - Unauthenticated Remote Code Execution (RCE)
  • April 20th 2023 at 00:00
  • โ†—

[webapps] Piwigo 13.6.0 - Stored Cross-Site Scripting (XSS)

Piwigo 13.6.0 - Stored Cross-Site Scripting (XSS)
  • April 20th 2023 at 00:00
  • โ†—

[remote] Microsoft Word 16.72.23040900 - Remote Code Execution (RCE)

Microsoft Word 16.72.23040900 - Remote Code Execution (RCE)
  • April 20th 2023 at 00:00
  • โ†—

[local] Linux Kernel 6.2 - Userspace Processes To Enable Mitigation

Linux Kernel 6.2 - Userspace Processes To Enable Mitigation
  • April 20th 2023 at 00:00
  • โ†—

[webapps] Serendipity 2.4.0 - Remote Code Execution (RCE) (Authenticated)

Serendipity 2.4.0 - Remote Code Execution (RCE) (Authenticated)
  • April 20th 2023 at 00:00
  • โ†—

[webapps] Swagger UI 4.1.3 - User Interface (UI) Misrepresentation of Critical Information

Swagger UI 4.1.3 - User Interface (UI) Misrepresentation of Critical Information
  • April 20th 2023 at 00:00
  • โ†—

[webapps] ProjeQtOr Project Management System 10.3.2 - Remote Code Execution (RCE)

ProjeQtOr Project Management System 10.3.2 - Remote Code Execution (RCE)
  • April 20th 2023 at 00:00
  • โ†—

[webapps] Chitor-CMS v1.1.2 - Pre-Auth SQL Injection

Chitor-CMS v1.1.2 - Pre-Auth SQL Injection
  • April 20th 2023 at 00:00
  • โ†—

[local] AspEmail v5.6.0.2 - Local Privilege Escalation

AspEmail v5.6.0.2 - Local Privilege Escalation
  • April 20th 2023 at 00:00
  • โ†—

[webapps] Lilac-Reloaded for Nagios 2.0.8 - Remote Code Execution (RCE)

Lilac-Reloaded for Nagios 2.0.8 - Remote Code Execution (RCE)
  • April 20th 2023 at 00:00
  • โ†—

[webapps] GDidees CMS 3.9.1 - Local File Disclosure

GDidees CMS 3.9.1 - Local File Disclosure
  • April 20th 2023 at 00:00
  • โ†—

[webapps] Bang Resto v1.0 - Stored Cross-Site Scripting (XSS)

Bang Resto v1.0 - Stored Cross-Site Scripting (XSS)
  • April 20th 2023 at 00:00
  • โ†—

[local] File Replication Pro 7.5.0 - Privilege Escalation/Password reset due Incorrect Access Control

File Replication Pro 7.5.0 - Privilege Escalation/Password reset due Incorrect Access Control
  • April 20th 2023 at 00:00
  • โ†—

[webapps] Serendipity 2.4.0 - Cross-Site Scripting (XSS)

Serendipity 2.4.0 - Cross-Site Scripting (XSS)
  • April 20th 2023 at 00:00
  • โ†—

[webapps] Bang Resto v1.0 - 'Multiple' SQL Injection

Bang Resto v1.0 - 'Multiple' SQL Injection
  • April 20th 2023 at 00:00
  • โ†—

[remote] Franklin Fueling Systems TS-550 - Default Password

Franklin Fueling Systems TS-550 - Default Password
  • April 20th 2023 at 00:00
  • โ†—

[webapps] Sielco PolyEco Digital FM Transmitter 2.0.6 - Authorization Bypass Factory Reset

Sielco PolyEco Digital FM Transmitter 2.0.6 - Authorization Bypass Factory Reset
  • April 14th 2023 at 00:00
  • โ†—

[webapps] Sielco Analog FM Transmitter 2.12 - Cross-Site Request Forgery

Sielco Analog FM Transmitter 2.12 - Cross-Site Request Forgery
  • April 14th 2023 at 00:00
  • โ†—

[webapps] Sielco PolyEco Digital FM Transmitter 2.0.6 - Authentication Bypass Exploit

Sielco PolyEco Digital FM Transmitter 2.0.6 - Authentication Bypass Exploit
  • April 14th 2023 at 00:00
  • โ†—

[webapps] Sielco PolyEco Digital FM Transmitter 2.0.6 - Account Takeover / Lockout / EoP

Sielco PolyEco Digital FM Transmitter 2.0.6 - Account Takeover / Lockout / EoP
  • April 14th 2023 at 00:00
  • โ†—

[local] Google Chrome Browser 111.0.5563.64 - AXPlatformNodeCocoa Fatal OOM/Crash (macOS)

Google Chrome Browser 111.0.5563.64 - AXPlatformNodeCocoa Fatal OOM/Crash (macOS)
  • April 14th 2023 at 00:00
  • โ†—

[webapps] Sielco Analog FM Transmitter 2.12 - Improper Access Control Change Admin Password

Sielco Analog FM Transmitter 2.12 - Improper Access Control Change Admin Password
  • April 14th 2023 at 00:00
  • โ†—

[webapps] InnovaStudio WYSIWYG Editor 5.4 - Unrestricted File Upload / Directory Traversal

InnovaStudio WYSIWYG Editor 5.4 - Unrestricted File Upload / Directory Traversal
  • April 14th 2023 at 00:00
  • โ†—

[remote] Sielco Analog FM Transmitter 2.12 - Remote Privilege Escalation

Sielco Analog FM Transmitter 2.12 - Remote Privilege Escalation
  • April 14th 2023 at 00:00
  • โ†—

[webapps] Sielco Analog FM Transmitter 2.12 - 'id' Cookie Brute Force Session Hijacking

Sielco Analog FM Transmitter 2.12 - 'id' Cookie Brute Force Session Hijacking
  • April 14th 2023 at 00:00
  • โ†—

[webapps] Bludit 4.0.0-rc-2 - Account takeover

Bludit 4.0.0-rc-2 - Account takeover
  • April 14th 2023 at 00:00
  • โ†—

[webapps] Sielco PolyEco Digital FM Transmitter 2.0.6 - Unauthenticated Information Disclosure

Sielco PolyEco Digital FM Transmitter 2.0.6 - Unauthenticated Information Disclosure
  • April 14th 2023 at 00:00
  • โ†—

[webapps] Sielco PolyEco Digital FM Transmitter 2.0.6 - Radio Data System POST Manipulation

Sielco PolyEco Digital FM Transmitter 2.0.6 - Radio Data System POST Manipulation
  • April 14th 2023 at 00:00
  • โ†—

[dos] Paradox Security Systems IPR512 - Denial Of Service

Paradox Security Systems IPR512 - Denial Of Service
  • April 10th 2023 at 00:00
  • โ†—

[local] Microsoft Edge (Chromium-based) Webview2 1.0.1661.34 - Spoofing

Microsoft Edge (Chromium-based) Webview2 1.0.1661.34 - Spoofing
  • April 10th 2023 at 00:00
  • โ†—

[webapps] ever gauzy v0.281.9 - JWT weak HMAC secret

ever gauzy v0.281.9 - JWT weak HMAC secret
  • April 10th 2023 at 00:00
  • โ†—

[webapps] Roxy Fileman 1.4.5 - Arbitrary File Upload

Roxy Fileman 1.4.5 - Arbitrary File Upload
  • April 10th 2023 at 00:00
  • โ†—

[webapps] Online Computer and Laptop Store 1.0 - Remote Code Execution (RCE)

Online Computer and Laptop Store 1.0 - Remote Code Execution (RCE)
  • April 10th 2023 at 00:00
  • โ†—

[webapps] BrainyCP V1.0 - Remote Code Execution

BrainyCP V1.0 - Remote Code Execution
  • April 10th 2023 at 00:00
  • โ†—

[dos] Microsoft Windows 11 - 'cmd.exe' Denial of Service

Microsoft Windows 11 - 'cmd.exe' Denial of Service
  • April 8th 2023 at 00:00
  • โ†—
โŒ