|
ExpertGPS 6.38 - XML External Entity Injection
|
|
2020-02-07
|
|
EyesOfNetwork 5.3 - Remote Code Execution
|
|
2020-02-07
|
|
PackWeb Formap E-learning 1.0 - 'NumCours' SQL Injection
|
|
2020-02-07
|
|
VehicleWorkshop 1.0 - 'bookingid' SQL Injection
|
|
2020-02-07
|
|
QuickDate 1.3.2 - SQL Injection
|
|
2020-02-07
|
|
Windscribe - WindscribeService Named Pipe Privilege Escalation (Metasploit)
|
|
2020-02-07
|
|
Cisco Data Center Network Manager 11.2.1 - 'LanFabricImpl' Command Injection
|
|
2020-02-06
|
|
Cisco Data Center Network Manager 11.2.1 - 'getVmHostData' SQL Injection
|
|
2020-02-06
|
|
Cisco Data Center Network Manager 11.2 - Remote Code Execution
|
|
2020-02-06
|
|
Ecommerce Systempay 1.0 - Production KEY Brute Force
|
|
2020-02-06
|
|
Online Job Portal 1.0 - Cross Site Request Forgery (Add User)
|
|
2020-02-06
|
|
RarmaRadio 2.72.4 - 'server' Denial of Service (PoC)
|
|
2020-02-06
|
|
RarmaRadio 2.72.4 - 'username' Denial of Service (PoC)
|
|
2020-02-06
|
|
TapinRadio 2.12.3 - 'username' Denial of Service (PoC)
|
|
2020-02-06
|
|
Online Job Portal 1.0 - Remote Code Execution
|
|
2020-02-06
|
|
TapinRadio 2.12.3 - 'address' Denial of Service (PoC)
|
|
2020-02-06
|
|
AbsoluteTelnet 11.12 - 'SSH2/username' Denial of Service (PoC)
|
|
2020-02-06
|
|
ELAN Smart-Pad 11.10.15.1 - 'ETDService' Unquoted Service Path
|
|
2020-02-06
|
|
VIM 8.2 - Denial of Service (PoC)
|
|
2020-02-06
|
|
Online Job Portal 1.0 - 'user_email' SQL Injection
|
|
2020-02-06
|
|
AbsoluteTelnet 11.12 - 'license name' Denial of Service (PoC)
|
|
2020-02-06
|
|
AbsoluteTelnet 11.12 - "license name" Denial of Service (PoC)
|
|
2020-02-06
|
|
HiSilicon DVR/NVR hi3520d firmware - Remote Backdoor Account
|
|
2020-02-05
|
|
AVideo Platform 8.1 - Cross Site Request Forgery (Password Reset)
|
|
2020-02-05
|
|
Verodin Director Web Console 3.5.4.0 - Remote Authenticated Password Disclosure (PoC)
|
|
2020-02-05
|
|
Kronos WebTA 4.0 - Authenticated Remote Privilege Escalation
|
|
2020-02-05
|
|
xglance-bin 11.00 - Privilege Escalation
|
|
2020-02-05
|
|
Socat 1.7.3.4 - Heap-Based Overflow (PoC)
|
|
2020-02-05
|
|
Wago PFC200 - Authenticated Remote Code Execution (Metasploit)
|
|
2020-02-05
|
|
AVideo Platform 8.1 - Information Disclosure (User Enumeration)
|
|
2020-02-05
|
|
F-Secure Internet Gatekeeper 5.40 - Heap Overflow (PoC)
|
|
2020-02-04
|
|
Sudo 1.8.25p - Buffer Overflow
|
|
2020-02-04
|
|
Centreon 19.10.5 - 'Pollers' Remote Command Execution (Metasploit)
|
|
2020-02-04
|
|
P2PWIFICAM2 for iOS 10.4.1 - 'Camera ID' Denial of Service (PoC)
|
|
2020-02-03
|
|
School ERP System 1.0 - Cross Site Request Forgery (Add Admin)
|
|
2020-02-03
|
|
Schneider Electric U.Motion Builder 1.3.4 - Authenticated Command Injection
|
|
2020-02-03
|
|
ira 8.3.4 - Information Disclosure (Username Enumeration)
|
|
2020-02-03
|
|
phpList 3.5.0 - Authentication Bypass
|
|
2020-02-03
|
|
IceWarp WebMail 11.4.4.1 - Reflective Cross-Site Scripting
|
|
2020-02-03
|
|
BearFTP 0.1.0 - 'PASV' Denial of Service
|
|
2020-02-03
|
|
FlexNet Publisher 11.12.1 - Cross-Site Request Forgery (Add Local Admin)
|
|
2020-01-31
|
|
Lotus Core CMS 1.0.1 - Local File Inclusion
|
|
2020-01-31
|
|
OpenSMTPD 6.6.2 - Remote Code Execution
|
|
2020-01-30
|
|
rConfig 3.9.3 - Authenticated Remote Code Execution
|
|
2020-01-30
|
|
Windows/x86 - Dynamic Bind Shell + Null-Free Shellcode (571 Bytes)
|
|
2020-01-30
|
|
Fifthplay S.A.M.I 2019.2_HP - Persistent Cross-Site Scripting
|
|
2020-01-29
|
|
Centreon 19.10.5 - 'centreontrapd' Remote Command Execution
|
|
2020-01-29
|
|
Centreon 19.10.5 - 'Pollers' Remote Command Execution
|
|
2020-01-29
|
|
Satellian 1.12 - Remote Code Execution
|
|
2020-01-29
|
|
Microsoft Windows 10 - Theme API 'ThemePack' File Parsing
|
|
2020-01-29
|