Для нормальной работы сайта необходимо разрешить JavaScript, включая скрипты с доменов googlesyndication.com и doubleclick.net для отображения системы поиска по сайту и прочих сервисов Google.

PS Exploit News

Packet Storm - Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
  1. Intel Rapid Storage Technology User Interface And Driver 15.9.0.1015 DLL Hijacking

    Intel Rapid Storage Technology User Interface and Driver version 15.9.0.1015 suffers from a dll hijacking vulnerability.
  2. Budabot 4.0 Denial Of Service

    Budabot versions 0.6 through 4.0 suffer from a denial of service vulnerability.
  3. Easy Outlook Express Recovery 2.0 Denial Of Service

    Easy Outlook Express Recovery version 2.0 suffers from a denial of service vulnerability.
  4. Mumsoft Easy Software 2.0 Denial Of Service

    Mumsoft Easy Software version 2.0 suffers from a denial of service vulnerability.
  5. DomainMOD 4.11.01 Cross Site Scripting

    DomainMOD versions 4.09.03 through 4.11.01 suffer from a cross site scripting vulnerability.
  6. Helpdezk 1.1.1 Shell Upload

    Helpdezk version 1.1.1 suffers from a remote shell upload vulnerability.
  7. Warranty Tracking System 11.06.3 SQL Injection

    Warranty Tracking System version 11.06.3 suffers from a remote SQL injection vulnerability.
  8. Everus.org 1.0.9 Second Factor Redirection

    The Everus.org Android application version 1.0.9 has a fundamental design flaw where the client can send a random phone number during the second factor flow with an arbitrary existing user id and the server send the attacker the one time password for the other user.
  9. Linux Broken UID/GID Mapping

    Linux has a broken uid/gid mapping for nested user namespaces with greater than 5 ranges.
  10. PHP-Proxy 5.1.0 Local File Inclusion

    PHP-Proxy version 5.1.0 suffers from a local file inclusion vulnerability.
  11. WordPress Ninja Forms 3.3.17 Cross Site Scripting

    WordPress Ninja Forms version 3.3.17 suffers from a cross site scripting vulnerability.
  12. WordPress Custom Frontend Login Registration Form 1.01 Cross Site Scripting

    WordPress Custom Frontend Login Registration Form plugin version 1.01 suffers from multiple cross site scripting vulnerabilities.
  13. PHP Mass Mail 1.0 Shell Upload

    PHP Mass Mail version 1.0 suffers from a remote shell upload vulnerability.
  14. 2-Plan Team 1.0.4 Shell Upload

    2-Plan Team version 1.0.4 suffers from a remote shell upload vulnerability.
  15. Simple E-Document 1.31 SQL Injection

    Simple E-Document version 1.31 suffers from a remote SQL injection vulnerability.
  16. Kordil EDMS 2.2.60rc3 Shell Upload

    Kordil EDMS version 2.2.60rc3 suffers from a remote shell upload vulnerability.
  17. Meneame English Pligg 5.8 SQL Injection

    Meneame English Pligg version 5.8 suffers from a remote SQL injection vulnerability.
  18. EverSync 0.5 Arbitrary File Download

    EverSync version 0.5 suffers from an arbitrary file download vulnerability.
  19. Galaxy Forces MMORPG 0.5.8 SQL Injection

    Galaxy Forces MMORPG version 0.5.8 suffers from a remote SQL injection vulnerability.
  20. Net-Billetterie 2.9 SQL Injection

    Net-Billetterie version 2.9 suffers from a remote SQL injection vulnerability.
  21. BiP Messenger Denial Of Service

    BiP Messenger suffers from a denial of service vulnerability.
  22. Malicious Git HTTP Server

    This Metasploit module exploits CVE-2018-17456, which affects Git versions 2.14.5, 2.15.3, 2.16.5, 2.17.2, 2.18.1, and 2.19.1 and lower. When a submodule url which starts with a dash e.g "-u./payload" is passed as an argument to git clone, the file "payload" inside the repository is executed. This Metasploit module creates a fake git repository which contains a submodule containing the vulnerability. The vulnerability is triggered when the submodules are initialized.
  23. BitZoom 1.0 SQL Injection

    BitZoom version 1.0 suffers from a remote SQL injection vulnerability.
  24. Precurio Intranet Portal 2.0 Cross Site Request Forgery

    Precurio Intranet Portal version 2.0 suffers from a cross site request forgery vulnerability.
  25. DoceboLMS 1.2 Shell Upload / SQL Injection

    DoceboLMS version 1.2 suffers from remote shell upload and remote SQL injection vulnerabilities.
Рейтинг@Mail.ru 2 megabytes