|
Bandwidth Monitor 3.9 - 'Svc10StrikeBandMontitor' Unquoted Service Path
|
|
2020-06-28
|
|
Gila CMS 1.11.8 - 'query' SQL Injection
|
|
2020-06-28
|
|
Netgear R7000 Router - Remote Code Execution
|
|
2020-06-28
|
|
SOS JobScheduler 1.13.3 - Stored Password Decryption
|
|
2020-06-28
|
|
Linux/ARM - Bind (0.0.0.0:1337/TCP) Shell (/bin/sh) + Null-Free Shellcode (100 bytes)
|
|
2020-06-28
|
|
Linux/ARM - execve /bin/dash Shellcode (32 bytes)
|
|
2020-06-28
|
|
Sysax MultiServer 6.90 - Reflected Cross Site Scripting
|
|
2020-06-28
|
|
Avaya IP Office 11 - Password Disclosure
|
|
2020-06-28
|
|
SmarterMail 16 - Arbitrary File Upload
|
|
2020-06-28
|
|
Frigate Professional 3.36.0.9 - 'Find Computer' Local Buffer Overflow (SEH) (PoC)
|
|
2020-06-28
|
|
Virtual Airlines Manager 2.6.2 - 'id' SQL Injection
|
|
2020-06-28
|
|
WinGate 9.4.1.5998 - Insecure Folder Permissions
|
|
2020-06-28
|
|
Joomla! J2 Store 3.3.11 - 'filter_order_Dir' Authenticated SQL Injection
|
|
2020-06-28
|
|
Sistem Informasi Pengumuman Kelulusan Online 1.0 - Cross-Site Request Forgery (Add Admin)
|
|
2020-06-28
|
|
10-Strike Bandwidth Monitor 3.9 - Buffer Overflow (SEH,DEP,ASLR)
|
|
2020-06-28
|
|
HFS Http File Server 2.3m Build 300 - Buffer Overflow (PoC)
|
|
2020-06-28
|
|
Library CMS Powerful Book Management System 2.2.0 - Session Fixation
|
|
2020-06-28
|
|
WordPress Plugin Simple File List 5.4 - Remote Code Execution
|
|
2020-06-28
|
|
Prestashop 1.7.6.4 - Cross-Site Request Forgery
|
|
2020-06-28
|
|
WordPress Plugin Helpful 2.4.11 - SQL Injection
|
|
2020-06-28
|
|
PHP-Fusion 9.03.50 - 'panels.php' Remote Code Execution
|
|
2020-06-28
|
|
Wordpress Plugin PicUploader 1.0 - Remote File Upload
|
|
2020-06-28
|
|
Joomla! Component ACYMAILING 3.9.0 - Unauthenticated Arbitrary File Upload
|
|
2020-06-28
|
|
UADMIN Botnet 1.0 - 'link' SQL Injection
|
|
2020-06-28
|
|
WordPress Plugin Custom Searchable Data System - Unauthenticated Data M]odification
|
|
2020-06-28
|
|
Wing FTP Server - Authenticated CSRF (Delete Admin)
|
|
2020-06-28
|
|
PlaySMS 1.4.3 - Template Injection / Remote Code Execution
|
|
2020-06-28
|
|
Joomla! 3.9.0 < 3.9.7 - CSV Injection
|
|
2020-06-28
|
|
CTROMS Terminal OS Port Portal - 'Password Reset' Authentication Bypass (Metasploit)
|
|
2020-06-28
|
|
CoreFTP 2.0 Build 674 MDTM - Directory Traversal (Metasploit)
|
|
2020-06-28
|
|
CoreFTP 2.0 Build 674 SIZE - Directory Traversal (Metasploit)
|
|
2020-06-28
|
|
WordPress Plugin WP Sitemap Page 1.6.2 - Persistent Cross-Site Scripting
|
|
2020-06-28
|
|
WordPress Plugin WOOF Products Filter for WooCommerce 1.2.3 - Persistent Cross-Site Scripting
|
|
2020-06-28
|
|
WordPress Plugin ultimate-member 2.1.3 - Local File Inclusion
|
|
2020-06-28
|
|
WordPress Plugin contact-form-7 5.1.6 - Remote File Upload
|
|
2020-06-28
|
|
WordPress Plugin Wordfence.7.4.5 - Local File Disclosure
|
|
2020-06-28
|
|
WordPress Plugin tutor.1.5.3 - Persistent Cross-Site Scripting
|
|
2020-06-28
|
|
WordPress Plugin Tutor.1.5.3 - Local File Inclusion
|
|
2020-06-28
|
|
Microsoft Windows Media Center WMV / WMA 6.3.9600.16384 - Code Execution
|
|
2020-06-28
|
|
Remote Desktop Gateway - 'BlueGate' Denial of Service (PoC)
|
|
2020-06-28
|
|
SpotDialup 1.6.7 - 'Key' Denial of Service (PoC)
|
|
2020-06-28
|
|
SpotFTP FTP Password Recovery 3.0.0.0 - 'Key' Denial of Service (PoC)
|
|
2020-06-28
|
|
XnConvert 1.82 - Denial of Service (PoC)
|
|
2020-06-28
|
|
SurfOffline Professional 2.2.0.103 - 'Project Name' Denial of Service (SEH)
|
|
2020-06-28
|
|
DeviceViewer 3.12.0.1 - Arbitrary Password Change
|
|
2020-06-28
|
|
DotNetNuke 9.3.2 - Cross-Site Scripting
|
|
2020-06-28
|
|
WordPress Plugin ARforms 3.7.1 - Arbitrary File Deletion
|
|
2020-06-28
|
|
iOS < 12.4.1 - 'Jailbreak' Local Privilege Escalation
|
|
2020-06-28
|
|
InputMapper 1.6.10 - Denial of Service
|
|
2020-06-28
|
|
SpotIE Internet Explorer Password Recovery 2.9.5 - 'Key' Denial of Service
|
|
2020-06-28
|