WordPress 5.0.0 crop-image Shell Upload
This Metasploit module exploits a path traversal and a local file inclusion vulnerability on WordPress versions 5.0.0 and versions below or equal to 4.9.8. The crop-image function allows a user, with...
View ArticleManageEngine ADSelfService Plus Authentication Bypass / Code Execution
This Metasploit module exploits CVE-2021-40539, a REST API authentication bypass vulnerability in ManageEngine ADSelfService Plus, to upload a JAR and execute it as the user running ADSelfService Plus...
View Article
More Pages to Explore .....