Explore >> Select a destination

You are here

 machevalia.blog
CVE-2022-26959 Northstar Club Management software version 6.3 - Full, Blind/Time-based SQL Injection - Machevalia
| | www.itechlounge.net
Windows : Sysprep was not able to validate Windows Installation | ITechLounge.net
3.2 parsecs away

Travel
| |
| | swordbytes.com
Overwolf 1-Click Remote Code Execution - CVE-2021-33501
2.4 parsecs away

Travel
| | SwordBytes researchers have identified an Unauthenticated Remote Code Execution (RCE) vulnerability in Overwolf's Client Application by abusing a Reflected Cross-Site Scripting (XSS) issue present in the "overwolfstore://" URL handler. This vulnerability allows remote unauthenticated attackers to execute arbitrary commands on the underlying operating system that hosts Overwolf's Client Application.
| | www.nodejs-security.com
The Tale of the Vulnerable MCP Database Server
2.0 parsecs away

Travel
| | The MCP Database Server by ExecuteAutomation had a critical vulnerability that allowed SQL injection attacks, bypassing its "read-only" mode. This article explores the flaw, its exploitation, and mitigation strategies.
| | artsploit.blogspot.com
Artsploit: 3 ways to get Remote Code Execution in Kafka UI
12.9 parsecs away

Travel
| When I first encountered Kafka UI, I was thrilled that such a dangerous functionality is exposed without authentication. After some time I d...