Grav CMS 1.7.44 Server-Side Template Injection

Ruby-SAML / GitLab Authentication Bypass

iTunes For Windows 12.13.2.3 Local Privilege Escalation

ABB Cylon Aspect 3.08.00 syslogSwitch.php Remote Code Execution

ABB Cylon Aspect 3.08.01 caldavUtil.php Remote Code Execution

Feng Office version 3.10.8.21 suffers from a persistent cross site scripting vulnerability.

Change Mirror Download

    # Exploit Title: Feng Office version 3.10.8.21  - Stored XSS# Exploit Author: tmrswrr # Vendor Homepage: https://www.fengoffice.com/# version 3.10.8.21 1 ) Login admin https://127.0.0.1/Feng_Office/index.php?c=access&a=index#2 ) Click Tasks > "><img src=x onerrora=confirm() onerror=confirm(1)> add task 3 ) Click Add worked hours you will be see xss alert

Headline

Feng Office 3.10.8.21 Cross Site Scripting

Packet Storm: Latest News