nopCommerce Store 4.30 - 'name' Stored Cross-Site Scripting
|
|
2020-11-24
|
TP-Link TL-WA855RE V5_200415 - Device Reset Auth Bypass
|
|
2020-11-23
|
LifeRay 7.2.1 GA2 - Stored XSS
|
|
2020-11-23
|
VTiger v7.0 CRM - 'To' Persistent XSS
|
|
2020-11-23
|
Boxoft Audio Converter 2.3.0 - '.wav' Buffer Overflow (SEH)
|
|
2020-11-23
|
Boxoft Convert Master 1.3.0 - 'wav' SEH Local Exploit
|
|
2020-11-20
|
Free MP3 CD Ripper 2.8 - Multiple File Buffer Overflow (Metasploit)
|
|
2020-11-20
|
IBM Tivoli Storage Manager Command Line Administrative Interface 5.2.0.1 - id' Field Stack Based Buffer Overflow
|
|
2020-11-20
|
WonderCMS 3.1.3 - 'content' Persistent Cross-Site Scripting
|
|
2020-11-20
|
Zortam Mp3 Media Studio 27.60 - Remote Code Execution (SEH)
|
|
2020-11-20
|
Internet Download Manager 6.38.12 - Scheduler Downloads Scheduler Buffer Overflow (PoC)
|
|
2020-11-19
|
Nagios Log Server 2.1.7 - Persistent Cross-Site Scripting
|
|
2020-11-19
|
M/Monit 3.7.4 - Password Disclosure
|
|
2020-11-19
|
M/Monit 3.7.4 - Privilege Escalation
|
|
2020-11-19
|
Gemtek WVRTM-127ACN 01.01.02.141 - Authenticated Arbitrary Command Injection
|
|
2020-11-19
|
TestBox CFML Test Framework 4.1.0 - Directory Traversal
|
|
2020-11-19
|
TestBox CFML Test Framework 4.1.0 - Arbitrary File Write and Remote Code Execution
|
|
2020-11-19
|
Gitlab 12.9.0 - Arbitrary File Read (Authenticated)
|
|
2020-11-19
|
Genexis Platinum 4410 Router 2.1 - UPnP Credential Exposure
|
|
2020-11-19
|
Fortinet FortiOS 6.0.4 - Unauthenticated SSL VPN User Password Modification
|
|
2020-11-19
|
xuucms 3 - 'keywords' SQL Injection
|
|
2020-11-19
|
PESCMS TEAM 2.3.2 - Multiple Reflected XSS
|
|
2020-11-19
|
ZeroLogon - Netlogon Elevation of Privilege
|
|
2020-11-18
|
BigBlueButton 2.2.25 - Arbitrary File Disclosure and Server-Side Request Forgery
|
|
2020-11-18
|
Wordpress Plugin WPForms 1.6.3.1 - Persistent Cross Site Scripting (Authenticated)
|
|
2020-11-18
|
Apache Struts 2.5.20 - Double OGNL evaluation
|
|
2020-11-17
|
Aerospike Database 5.1.0.3 - OS Command Execution
|
|
2020-11-17
|
LCD_Service 1.0.1.0 - 'LCD_Service' Unquote Service Path
|
|
2020-11-17
|
Froxlor Froxlor Server Management Panel 0.10.16 - Persistent Cross-Site Scripting
|
|
2020-11-17
|
Microsoft Internet Explorer 11 - Use-After-Free
|
|
2020-11-17
|
WordPress Plugin Buddypress 6.2.0 - Persistent Cross-Site Scripting
|
|
2020-11-17
|
SugarCRM 6.5.18 - Persistent Cross-Site Scripting
|
|
2020-11-17
|
Online Doctor Appointment Booking System PHP and Mysql 1.0 - 'q' SQL Injection
|
|
2020-11-17
|
EgavilanMedia User Registration & Login System with Admin Panel Exploit - SQLi Auth Bypass
|
|
2020-11-17
|
Cisco 7937G - DoS/Privilege Escalation
|
|
2020-11-16
|
Car Rental Management System 1.0 - 'car_id' Sql Injection
|
|
2020-11-16
|
Car Rental Management System 1.0 - Remote Code Execution (Authenticated)
|
|
2020-11-16
|
PMB 5.6 - 'chemin' Local File Disclosure
|
|
2020-11-16
|
Atheros Coex Service Application 8.0.0.255 - 'ZAtheros Bt&Wlan Coex Agent' Unquoted Service Path
|
|
2020-11-16
|
User Registration & Login and User Management System 2.1 - Login Bypass SQL Injection
|
|
2020-11-16
|
Car Rental Management System 1.0 - 'id' SQL Injection (Authenticated)
|
|
2020-11-16
|
Logitech Solar Keyboard Service - 'L4301_Solar' Unquoted Service Path
|
|
2020-11-16
|
Advanced System Care Service 13 - 'AdvancedSystemCareService13' Unquoted Service Path
|
|
2020-11-16
|
Water Billing System 1.0 - 'id' SQL Injection (Authenticated)
|
|
2020-11-16
|
KiteService 1.2020.1113.1 - 'KiteService.exe' Unquoted Service Path
|
|
2020-11-16
|
Pandora FMS 7.0 NG 749 - 'CG Items' SQL Injection (Authenticated)
|
|
2020-11-16
|
October CMS Build 465 - Arbitrary File Read Exploit (Authenticated)
|
|
2020-11-13
|
OpenCart Theme Journal 3.1.0 - Sensitive Data Exposure
|
|
2020-11-13
|
IDT PC Audio 1.0.6425.0 - 'STacSV' Unquoted Service Path
|
|
2020-11-13
|
SAntivirus IC 10.0.21.61 - 'SAntivirusIC' Unquoted Service Path
|
|
2020-11-13
|