CVE-2017-0371
MediaWiki before 1.23.16, 1.24.x through 1.27.x before 1.27.2, and 1.28.x before 1.28.1 allows remote attackers to discover the IP addresses of Wiki visitors via a...
CVE-2016-2124
A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the...
CVE-2020-25717
A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possible privilege...
CVE-2020-25718
A flaw was found in the way samba, as an Active Directory Domain Controller, is able to support an RODC (read-only domain controller). This would...
CVE-2020-25719
A flaw was found in the way Samba, as an Active Directory Domain Controller, implemented Kerberos name-based authentication. The Samba AD DC, could become confused...
CVE-2020-25722
Multiple flaws were found in the way samba AD DC implemented access and conformance checking of stored data. An attacker could use this flaw to...
CVE-2020-8242
Unsanitized user input in ExpressionEngine <= 5.4.0 control panel member creation leads to an SQL injection. The user needs member creation/admin control panel access to...
Datarobot — Remote Code Execution
Posted by Michael Coers on Feb 18 Exploit Title: Datarobot -- Remote Code Execution Date: 9/28/2021 Vendor Homepage: https://www.datarobot.com Software Link: https://app.datarobot.com/ Version: TBD -...
MartFury Marketplace – Cross Site Scripting Vulnerability
Posted by info () vulnerability-lab com on Feb 18 Document Title: =============== MartFury Marketplace - Cross Site Scripting Vulnerability References (Source): ==================== https://www.vulnerability-lab.com/get_content.php?id=2282 Release Date:...
Vicidial v2.14-783a – (DB) SQL Injection Web Vulnerability
Posted by info () vulnerability-lab com on Feb 18 Document Title: =============== Vicidial v2.14-783a - (DB) SQL Injection Web Vulnerability References (Source): ==================== https://www.vulnerability-lab.com/get_content.php?id=2312 Release...