This module exploits a javascript command injection vulnerability in Kibana, in the Timelion application.
This module exploits an OS command injection vulnerability in Apache Solr, via the Velocity Template.
Tenable found an unauthenticated remote code execution vulnerability in the SolarWinds Dameware Remote Mini Remote Client Agent Service (DWRCS.exe) version 12.1.0.89.
Poor implementations of SSL servers using PKCS1 v1.5 allow an attacker to perform RSA decryption and signing operations using the private key of said servers This module tries to verify if the vulnerability is present in the target server by comparing its responses to various handcrafted messages
This module triggers a use after free vulnerability in the Remote Desktop Service by sending a malformed packet.
Maple Computer SNMP Asministrator is prone to a buffer-overflow vulnerability when handling a crafted packet.
File Share Wizard is prone to a buffer-overflow vulnerability when handling a crafted POST packet.
The specific flaw exists within BwPAlarm.dll, which is accessed through the 70603 IOCTL in the webvrpcs process. The process does not properly validate the length of user-supplied data prior to copying it to a fixed-length buffer.
Adobe ColdFusion is prone to a remote vulnerability that allows attackers to take advantage of an insecure deployment of the JNBridge protocol.
This module exploits a win32k component vulnerability This can be exploited to execute arbitrary code with System privileges. It is working until KB4507004 update 2019/07/08 it is patched in KB4507449 Security Monthly Quality Rollup for Windows 7 x64-based Systems 2019/07/09