This module exploits a Java deserialization bug in Apache Struts REST XStreamHandler which allows users to get Code Execution.

This module exploits a privilege escalation vulnerability in OrientDB by abusing SQL queries on OUser/ORole without the privileges which allows users to get Code Execution.

This module exploits a PHPMailer vulnerability in WordPress abusing a Lost Password recovery action and installs an agent.

This module exploits a SQL Injection vulnerability in Joomla which allows gathering of users and password hashes by parsing SQL output errors.

This module uses an arbitrary file upload vulnerability in Magento eCommerce Web Sites to gain arbitrary code execution on the affected system.

Authentication is required to access the administrative panel.

This module uses a directory traversal vulnerability in the file import feature in Nuxeo Platform CMS to upload a JSP to gain arbitrary code execution on the affected system.

PHPMailer is prone to a abuse the mailSend function. This vulnerability allows remote attackers to pass extra parameters to the mail command and consequently execute arbitrary code via a \" (backslash double quote) in a crafted Sender property.



This updates adds x86/x64 and HTTP/HTTPS Channel Support.

PHPMailer is prone to a abuse the mailSend function. This vulnerability allows remote attackers to pass extra parameters to the mail command and consequently execute arbitrary code via a \" (backslash double quote) in a crafted Sender property.



This fixes a small try/catch exception error.

Authentication bypass and upload of file with dangerous type in Boonex Dolphin = 7.3.2 allows to remote unauthenticated attackers to affect integrity and availability via PHP remote file inclusion.

Remote Code Execution when performing file upload based on Jakarta Multipart parser.



This update adds support to Linux x86_64 distributions