The Latest Infosec News, Tools, and Exploits – Got Root?
Agartha is a penetration testing tool which creates dynamic payload lists and user access matrix to reveal injection flaws and authentication/authorization issues. There are many different attack payloads exists, but Agartha creates run-time, systematic and […]
Features In its current state, it will only work with torrc MAX CIRCUIT DIRTINESS of 10 Cloudflare Resolver [Cloudbuster] LFI->RCE and XSS Scanning [LFI to RCE & XSS] SQL Injection Vuln Scanner [SQLi] Extremely Large […]
MyBB version 1.8.25 suffers from a chained remote command execution (RCE) flaw. Upgrade to version 1.8.26
The WordPress CMS version 5.0.0 suffers from a Image Remote Code Execution vulnerability via access with at least an Author account.
SonicWall SSL-Virutal Private Network version 8.0.0.0 is vulnerable to “shellshock/visualdoor” RCE (Remote Code Execution) Unauthenticated.
Gila Content Management System version 2.0.0 suffers from a Remote Code Execution Unauthenticated vulnerability.
GitLab version 11.4.7 suffers from a Remote Code Execution exploit listed with CVE-2018-19571 + CVE-2018-19585. Exploit written in Python.
The WordPress File Manager (wp-file-manager) plugin versions 6.0 through 6.8 allows remote attackers to upload and execute arbitrary PHP code because it renames an unsafe example elFinder connector file to have the .php extension. This, […]
Oracle WebLogic Server versions 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0, and 14.1.1.0.0 remote code execution exploit.
