|
Microsoft DirectWrite - Out-of-Bounds Read in sfac_GetSbitBitmap While Processing TTF Fonts
|
|
2019-09-12
|
|
Microsoft DirectWrite - Invalid Read in SplicePixel While Processing OTF Fonts
|
|
2019-09-12
|
|
eWON Flexy - Authentication Bypass
|
|
2019-09-11
|
|
AVCON6 systems management platform - OGNL Remote Command Execution
|
|
2019-09-11
|
|
Windows 10 - UAC Protection Bypass Via Windows Store (WSReset.exe) and Registry (Metasploit)
|
|
2019-09-10
|
|
Windows 10 - UAC Protection Bypass Via Windows Store (WSReset.exe) (Metasploit)
|
|
2019-09-10
|
|
October CMS - Upload Protection Bypass Code Execution (Metasploit)
|
|
2019-09-10
|
|
LibreNMS - Collectd Command Injection (Metasploit)
|
|
2019-09-10
|
|
WordPress Plugin Photo Gallery 1.5.34 - Cross-Site Scripting (2)
|
|
2019-09-10
|
|
WordPress Plugin Photo Gallery 1.5.34 - Cross-Site Scripting
|
|
2019-09-10
|
|
WordPress Plugin Photo Gallery 1.5.34 - SQL Injection
|
|
2019-09-10
|
|
Dolibarr ERP-CRM 10.0.1 - SQL Injection
|
|
2019-09-09
|
|
WordPress Plugin Sell Downloads 1.0.86 - Cross-Site Scripting
|
|
2019-09-09
|
|
Rifatron Intelligent Digital Security System - 'animate.cgi' Stream Disclosure
|
|
2019-09-09
|
|
Online Appointment - SQL Injection
|
|
2019-09-09
|
|
Enigma NMS 65.0.0 - SQL Injection
|
|
2019-09-09
|
|
Enigma NMS 65.0.0 - OS Command Injection
|
|
2019-09-09
|
|
Enigma NMS 65.0.0 - Cross-Site Request Forgery
|
|
2019-09-09
|
|
Dolibarr ERP-CRM 10.0.1 - 'elemid' SQL Injection
|
|
2019-09-09
|
|
Wordpress 5.2.3 - Cross-Site Host Modification
|
|
2019-09-09
|
|
FusionPBX 4.4.8 - Remote Code Execution
|
|
2019-09-06
|
|
Inventory Webapp - 'itemquery' SQL injection
|
|
2019-09-06
|
|
Pulse Secure 8.1R15.1/8.2/8.3/9.0 SSL VPN - Remote Code Execution
|
|
2019-09-06
|
|
AwindInc SNMP Service - Command Injection (Metasploit)
|
|
2019-09-05
|
|
Linux/x86 - TCP Reverse Shell 127.0.0.1 Nullbyte Free Shellcode
|
|
2019-09-05
|
|
DASAN Zhone ZNID GPON 2426A EU - Multiple Cross-Site Scripting
|
|
2019-09-04
|
|
WordPress Plugin Download Manager 2.9.93 - Cross-Site Scripting
|
|
2019-09-04
|
|
FileThingie 2.5.7 - Arbitrary File Upload
|
|
2019-09-03
|
|
Cisco RV110W/RV130(W)/RV215W Routers Management Interface - Remote Command Execution (Metasploit)
|
|
2019-09-03
|
|
Cisco Data Center Network Manager - Unauthenticated Remote Code Execution (Metasploit)
|
|
2019-09-03
|
|
Cisco UCS Director - default scpuser password (Metasploit)
|
|
2019-09-03
|
|
ptrace - Sudo Token Privilege Escalation (Metasploit)
|
|
2019-09-03
|
|
ktsuss 1.4 - suid Privilege Escalation (Metasploit)
|
|
2019-09-03
|
|
Craft CMS 2.7.9/3.2.5 - Information Disclosure
|
|
2019-09-02
|
|
Kaseya VSA agent 9.5 - Privilege Escalation
|
|
2019-09-02
|
|
Alkacon OpenCMS 10.5.x - Local File inclusion
|
|
2019-09-02
|
|
Alkacon OpenCMS 10.5.x - Cross-Site Scripting (2)
|
|
2019-09-02
|
|
Alkacon OpenCMS 10.5.x - Cross-Site Scripting
|
|
2019-09-02
|
|
IntelBras TELEFONE IP TIP200/200 LITE 60.61.75.15 - Arbitrary File Read
|
|
2019-09-02
|
|
Wordpress Plugin Event Tickets 4.10.7.1 - CSV Injection
|
|
2019-09-02
|
|
ChaosPro 3.1 - SEH Buffer Overflow
|
|
2019-09-02
|
|
ChaosPro 2.1 - SEH Buffer Overflow
|
|
2019-09-02
|
|
ChaosPro 2.0 - SEH Buffer Overflow
|
|
2019-09-02
|
|
Opencart 3.x - Cross-Site Scripting
|
|
2019-09-02
|
|
Cisco Email Security Appliance (IronPort) C160 - 'Host' Header Injection
|
|
2019-09-02
|
|
VX Search Enterprise 10.4.16 - 'User-Agent' Denial of Service
|
|
2019-08-30
|
|
WordPress Plugin WooCommerce Product Feed 2.2.18 - Cross-Site Scripting
|
|
2019-08-30
|
|
YouPHPTube 7.4 - Remote Code Execution
|
|
2019-08-30
|
|
DomainMod 4.13 - Cross-Site Scripting
|
|
2019-08-30
|
|
Sentrifugo 3.2 - Persistent Cross-Site Scripting
|
|
2019-08-30
|