PJPROJECT versions 2.16 and below suffer from a heap buffer overflow vulnerability...
Dolibarr ERP/CRM versions prior to 17.0.1 allow remote code execution by an authenticated user who has access to the Website module...
Apache HertzBeat version 1.8.0 suffers from a remote command execution vulnerability via the scriptCommand parameter in a monitoring template defin...
This Metasploit module exploits a command execution via file upload. If GestioIP is configured to use no authentication for admin account, no passw...
Glances version 4.5.2 suffers from a command injection vulnerability...
The Shell extension in Espanso version 2.3.0 allows arbitrary command execution. An attacker who can modify the match configuration file can inject...
Event Booking Calendar version 5.0 suffers from a cross site scripting vulnerability...
The Shell and Script extensions in Espanso version 2.3.0 allow arbitrary command execution. No restart required. Config changes take effect immedia...
Proof of concept for Flowise versions prior to 3.0.5 that suffer from a missing authentication vulnerability...
WordPress Ninja Forms - File Uploads plugin versions 3.3.26 and below arbitrary file upload exploit...
AI-powered asset discovery, dark web monitoring, CVE alerting, and vulnerability scanning — all in one platform.
