|
Monstra CMS 3.0.4 - Remote Code Execution (Authenticated)
|
|
2021-06-13
|
|
Inkpad Notepad & To do list 4.3.61 - Denial of Service (PoC)
|
|
2021-06-13
|
|
4Images 1.8 - 'redirect' Reflected XSS
|
|
2021-06-13
|
|
Gitlab 13.9.3 - Remote Code Execution (Authenticated)
|
|
2021-06-13
|
|
FUDForum 3.1.0 - 'author' Reflected XSS
|
|
2021-06-13
|
|
FUDForum 3.1.0 - 'srch' Reflected XSS
|
|
2021-06-13
|
|
Blacknote 2.2.1 - Denial of Service (PoC)
|
|
2021-06-13
|
|
Notepad notes 2.6.7 - Denial of Service (PoC)
|
|
2021-06-13
|
|
ColorNote 4.1.9 - Denial of Service (PoC)
|
|
2021-06-13
|
|
BasicNote 1.1.9 - Denial of Service (PoC)
|
|
2021-06-13
|
|
CHIYU IoT Devices - Denial of Service (DoS)
|
|
2021-06-13
|
|
CHIYU IoT Devices - 'Telnet' Authentication Bypass
|
|
2021-06-13
|
|
Seo Panel 4.8.0 - 'from_time' Reflected XSS
|
|
2021-06-13
|
|
PHP 8.1.0-dev - 'User-Agentt' Remote Code Execution
|
|
2021-06-13
|
|
Seo Panel 4.8.0 - 'category' Reflected XSS
|
|
2021-06-13
|
|
Seo Panel 4.8.0 - 'search_name' Reflected XSS
|
|
2021-06-13
|
|
Products.PluggableAuthService 2.6.0 - Open Redirect
|
|
2021-06-13
|
|
Intel(R) Audio Service x64 01.00.1080.0 - 'IntelAudioService' Unquoted Service Path
|
|
2021-06-13
|
|
GetSimple CMS 3.3.4 - Information Disclosure
|
|
2021-06-13
|
|
Apache Airflow 1.10.10 - 'Example Dag' Remote Code Execution
|
|
2021-06-13
|
|
Thecus N4800Eco Nas Server Control Panel - Comand Injection
|
|
2021-06-13
|
|
Veyon 4.4.1 - 'VeyonService' Unquoted Service Path
|
|
2021-06-13
|
|
Atlassian Jira 8.15.0 - Information Disclosure (Username Enumeration)
|
|
2021-06-13
|
|
CHIYU TCP/IP Converter devices - CRLF injection
|
|
2021-06-13
|
|
CHIYU IoT devices - 'Multiple' Cross-Site Scripting (XSS)
|
|
2021-06-13
|
|
WordPress Plugin WP Prayer version 1.6.1 - 'prayer_messages' Stored Cross-Site Scripting (XSS) (Authenticated)
|
|
2021-06-13
|
|
Ubee EVW327 - 'Enable Remote Access' Cross-Site Request Forgery (CSRF)
|
|
2021-06-13
|
|
ProjeQtOr Project Management 9.1.4 - Remote Code Execution
|
|
2021-06-13
|
|
LogonTracer 1.2.0 - Remote Code Execution (Unauthenticated)
|
|
2021-06-13
|
|
DupTerminator 1.4.5639.37199 - Denial of Service (PoC)
|
|
2021-06-13
|
|
Selenium 3.141.59 - Remote Code Execution (Firefox/geckodriver)
|
|
2021-06-13
|
|
Trixbox 2.8.0.4 - 'lang' Path Traversal
|
|
2021-06-13
|
|
Trixbox 2.8.0.4 - 'lang' Remote Code Execution (Unauthenticated)
|
|
2021-06-13
|
|
WordPress Plugin LifterLMS 4.21.0 - Stored Cross-Site Scripting (XSS)
|
|
2021-06-13
|
|
PHPFusion 9.03.50 - Remote Code Execution
|
|
2021-06-13
|
|
Postbird 0.8.4 - Javascript Injection
|
|
2021-06-13
|
|
Pluck CMS 4.7.13 - File Upload Remote Code Execution (Authenticated)
|
|
2021-06-13
|
|
ProFTPd 1.3.5 - 'mod_copy' Remote Command Execution (2)
|
|
2021-06-13
|
|
Codiad 2.8.4 - Remote Code Execution (Authenticated) (3)
|
|
2021-06-13
|
|
RarmaRadio 2.72.8 - Denial of Service (PoC)
|
|
2021-06-13
|
|
WordPress Plugin Cookie Law Bar 1.2.1 - 'clb_bar_msg' Stored Cross-Site Scripting (XSS)
|
|
2021-06-13
|
|
Gadget Works Online Ordering System 1.0 - 'Category' Persistent Cross-Site Scripting (XSS)
|
|
2021-06-13
|
|
WordPress Plugin ReDi Restaurant Reservation 21.0307 - 'Comment' Stored Cross-Site Scripting (XSS)
|
|
2021-06-13
|
|
Codiad 2.8.4 - Remote Code Execution (Authenticated) (2)
|
|
2021-06-13
|
|
Shopizer 2.16.0 - 'Multiple' Cross-Site Scripting (XSS)
|
|
2021-06-13
|
|
ePowerSvc 6.0.3008.0 - 'ePowerSvc.exe' Unquoted Service Path
|
|
2021-06-13
|
|
DiskBoss Service 12.2.18 - 'diskbsa.exe' Unquoted Service Path
|
|
2021-06-13
|
|
iDailyDiary 4.30 - Denial of Service (PoC)
|
|
2021-06-13
|
|
Schlix CMS 2.2.6-6 - Arbitary File Upload And Directory Traversal Leads To RCE (Authenticated)
|
|
2021-06-13
|
|
Solaris SunSSH 11.0 x86 - libpam Remote Root (2)
|
|
2021-06-13
|