Bitrix mcart.xls module versions 6.5.2 and below suffer from a remote SQL injection vulnerability.
8efe216bb027ca8ee0be2bd4f6ef7d3c48d026ab18f0d7d086a6662a3f8f1bdf
ManageEngine Application Manager version 12.5 remote command execution exploit.
6355b7805d4ba71134fdfc1fc894d635b1554fa08262595f875feac17295241a
ManageEngine Application Manager 12 suffers from cross site request forgery, privilege escalation, and cross site scripting vulnerabilities.
4ccfcab1a810d64d10215297cc28434df83757d2454551e4b8388ea322be6d40
Telisca IPS Lock 2 suffers from an unauthenticated phone unlocking vulnerability. Metasploit module included.
e133318214b5a6b759760f7712621b264726dc532cf4c1896a89fc90acd612f1
smod is a modular framework with every kind of diagnostic and offensive feature you could need in order to pentest the modbus protocol. It is a full modbus protocol implementation using Python and Scapy. This software can be run on Linux/OSX under python 2.7.x.
b4b32ad85928b3e1070dab8489ec2677653a4673c05a81f97e61cbbee9170e50
Debian Linux Security Advisory 3444-1 - Crtc4L discovered a cross-site scripting vulnerability in wordpress, a web blogging tool, allowing a remote authenticated administrator to compromise the site.
13f0e83bbb950aa65d8f7458a7dcc5beedb0e392e114b52cfe46f8c1908bd895
Ubuntu Security Notice 2869-1 - It was discovered that the OpenSSH client experimental support for resuming connections contained multiple security issues. A malicious server could use this issue to leak client memory to the server, including private client user keys.
81dcdbfc61e721d0b636bdca5a15f50bb4cc8c99cc014028cc948b0fc4f5d5b6
Debian Linux Security Advisory 3445-1 - Javantea discovered that pygments, a generic syntax highlighter, is prone to a shell injection vulnerability allowing a remote attacker to execute arbitrary code via shell metacharacters in a font name.
be20283f27cd754080667c6aa5832f53b7aa71a80cf88dd6308d581511d9b578
PacketFence is a network access control (NAC) system. It is actively maintained and has been deployed in numerous large-scale institutions. It can be used to effectively secure networks, from small to very large heterogeneous networks. PacketFence provides NAC-oriented features such as registration of new network devices, detection of abnormal network activities including from remote snort sensors, isolation of problematic devices, remediation through a captive portal, and registration-based and scheduled vulnerability scans.
074bf592a45ef62a243449e32d4c278c2de16f61efb7ce3875a94e9229e014e8