2-Plan Team 1.0.4 - Arbitrary File Upload Vulnerability
|
|
2018-11-23
|
Simple E-Document 1.31 - username SQL Injection Vulnerability
|
|
2018-11-23
|
Kordil EDMS 2.2.60rc3 - Arbitrary File Upload Vulnerability
|
|
2018-11-23
|
Meneame English Pligg 5.8 - search SQL Injection Vulnerability
|
|
2018-11-23
|
EverSync 0.5 - Arbitrary File Download Vulnerability
|
|
2018-11-23
|
Galaxy Forces MMORPG 0.5.8 - type SQL Injection Vulnerability
|
|
2018-11-23
|
Net-Billetterie 2.9 - login SQL Injection Vulnerability
|
|
2018-11-23
|
BitZoom 1.0 - rollno SQL Injection Vulnerability
|
|
2018-11-23
|
PHP-Proxy 5.1.0 - Local File Inclusion Vulnerability
|
|
2018-11-23
|
Linux - Broken uid/gid Mapping for Nested User Namespaces Exploit
|
|
2018-11-23
|
PHP 5.2.3 imap (Debian Based) - imap_open Disable Functions Bypass Vulnerability
|
|
2018-11-23
|
Easy Outlook Express Recovery 2.0 - Denial of Service Exploit
|
|
2018-11-23
|
Notepad3 1.0.2.350 - Denial of Service Exploit
|
|
2018-11-23
|
Mumsoft Easy Software 2.0 - Denial of Service Exploit
|
|
2018-11-23
|
WordPress Custom Frontend Login Registration Form 1.01 Cross Site Scripting Vulnerability
|
|
2018-11-23
|
Wordpress Ninja Forms 3.3.17 Plugin - Cross-Site Scripting Vulnerability
|
|
2018-11-23
|
Precurio Intranet Portal 2.0 - Cross-Site Request Forgery (Add Admin) Vulnerability
|
|
2018-11-23
|
Pedidos 1.0 - SQL Injection Vulnerability
|
|
2018-11-23
|
DoceboLMS 1.2 - SQL Injection / Arbitrary File Upload Vulnerabilities
|
|
2018-11-23
|
Rmedia SMS 1.0 - SQL Injection Vulnerability
|
|
2018-11-23
|
Bosch Video Management System 8.0 - Configuration Client Denial of Service Exploit
|
|
2018-11-23
|
Electricks eCommerce 1.0 - Persistent Cross-Site Scripting Vulnerability
|
|
2018-11-23
|
EdTv 2 - id SQL Injection Vulnerability
|
|
2018-11-23
|
Electricks eCommerce 1.0 - Cross-Site Request Forgery (Change Admin Password) Vulnerability
|
|
2018-11-23
|
Helpdezk 1.1.1 - query SQL Injection Vulnerability
|
|
2018-11-23
|
iServiceOnline 1.0 - r SQL Injection Vulnerability
|
|
2018-11-23
|
SIPve 0.0.2-R19 - SQL Injection Vulnerability
|
|
2018-11-23
|
Webiness Inventory 2.3 - SQL Injection Vulnerability
|
|
2018-11-23
|
Webiness Inventory 2.3 - Arbitrary File Upload / Cross-Site Request Forgery (Add Admin)
|
|
2018-11-23
|
Maitra Mail Tracking System 1.7.2 - SQL Injection / Database File Download Vulnerabilities
|
|
2018-11-23
|
Alive Parish 2.0.4 - SQL Injection / Arbitrary File Upload Vulnerabilities
|
|
2018-11-23
|
ClipperCMS 1.3.3 - Cross-Site Request Forgery (File Upload) Vulnerability
|
|
2018-11-23
|
Silurus Classifieds Script 2.0 - wcategory SQL Injection Vulnerability
|
|
2018-11-23
|
Gumbo CMS 0.99 - SQL Injection Vulnerability
|
|
2018-11-23
|
ABC ERP 0.6.4 - Cross-Site Request Forgery (Update Admin) Vulnerability
|
|
2018-11-23
|
Easyndexer 1.0 - Arbitrary File Download Vulnerability
|
|
2018-11-23
|
Tina4 Stack 1.0.3 - Cross-Site Request Forgery (Update Admin) Vulnerability
|
|
2018-11-23
|
Tina4 Stack 1.0.3 - SQL Injection / Database File Download Vulnerabilities
|
|
2018-11-23
|
Data Center Audit 2.6.2 - Cross-Site Request Forgery (Update Admin) Vulnerability
|
|
2018-11-23
|
Alienor Web Libre 2.0 - SQL Injection Vulnerability
|
|
2018-11-23
|
Musicco 2.0.0 - Arbitrary Directory Download Vulnerability
|
|
2018-11-23
|
Surreal ToDo 0.6.1.2 - Local File Inclusion Vulnerability
|
|
2018-11-23
|
Surreal ToDo 0.6.1.2 - SQL Injection Vulnerability
|
|
2018-11-23
|
CentOS Web Panel 0.9.8.740 - Cross-Site Request Forgery / Cross-Site Scripting Vulnerabilities
|
|
2018-11-23
|
Atlassian Jira Authenticated Upload Code Execution Exploit
|
|
2018-11-23
|
WebOfisi E-Ticaret V4 - 'urun' SQL Injection
|
|
2018-11-21
|
Wordpress CherryFramework Themes 3.1.4 - Backup File Download
|
|
2018-11-21
|
Ticketly 1.0 - 'name' SQL Injection
|
|
2018-11-21
|
Synaccess netBooter NP-0801DU 7.4 - Cross-Site Request Forgery (Add Admin)
|
|
2018-11-21
|
Microsoft Windows - DfMarshal Unsafe Unmarshaling Privilege Escalation
|
CVE-2018-8550
|
2018-11-20
|
Ticketly 1.0 - Cross-Site Request Forgery (Add Admin)
|
|
2018-11-20
|
MacOS 10.13 - 'workq_kernreturn' Denial of Service (PoC)
|
|
2018-11-20
|
ImageMagick - Memory Leak
|
CVE-2018-16323
|
2018-11-20
|
Microsoft Edge Chakra - OP_Memset Type Confusion
|
|
2018-11-19
|
HTML Video Player 1.2.5 - Buffer-Overflow (SEH)
|
|
2018-11-19
|
XMPlay 3.8.3 - '.m3u' Denial of Service (PoC)
|
|
2018-11-19
|
Linux - Broken uid/gid Mapping for Nested User Namespaces
|
CVE-2018-18955
|
2018-11-16
|
Easy Outlook Express Recovery 2.0 - Denial of Service (PoC)
|
|
2018-11-16
|
Mumsoft Easy Software 2.0 - Denial of Service (PoC)
|
|
2018-11-16
|
DomainMOD 4.11.01 - Cross-Site Scripting
|
CVE-2018-19136
|
2018-11-16
|
Helpdezk 1.1.1 - Arbitrary File Upload
|
|
2018-11-16
|
Warranty Tracking System 11.06.3 - 'txtCustomerCode' SQL Injection
|
|
2018-11-16
|
Wordpress Plugin Ninja Forms 3.3.17 - Cross-Site Scripting
|
CVE-2018-19287
|
2018-11-15
|
PHP Mass Mail 1.0 - Arbitrary File Upload
|
|
2018-11-15
|
2-Plan Team 1.0.4 - Arbitrary File Upload
|
|
2018-11-15
|
Simple E-Document 1.31 - 'username' SQL Injection
|
|
2018-11-15
|
Kordil EDMS 2.2.60rc3 - Arbitrary File Upload
|
|
2018-11-15
|
Meneame English Pligg 5.8 - 'search' SQL Injection
|
|
2018-11-15
|
The Powerful Resource of PHP Stream Wrappers
|
|
2018-11-15
|
Notepad3 1.0.2.350 - Denial of Service (PoC)
|
|
2018-11-15
|
EverSync 0.5 - Arbitrary File Download
|
|
2018-11-15
|
Webkit (Chome < 61) - 'MHTML' Universal Cross-site Scripting
|
CVE-2017-5124
|
2018-11-15
|
Webkit (Safari) - Universal Cross-site Scripting
|
CVE-2017-7089
|
2018-11-15
|
PHP 5.2.3 imap (Debian Based) - 'imap_open' Disable Functions Bypass
|
|
2018-11-15
|
Galaxy Forces MMORPG 0.5.8 - 'type' SQL Injection
|
|
2018-11-15
|
Net-Billetterie 2.9 - 'login' SQL Injection
|
|
2018-11-15
|
BitZoom 1.0 - 'rollno' SQL Injection
|
|
2018-11-15
|
PHP-Proxy 5.1.0 - Local File Inclusion
|
CVE-2018-19246
|
2018-11-15
|
Precurio Intranet Portal 2.0 - Cross-Site Request Forgery (Add Admin)
|
|
2018-11-15
|
SwitchVPN For MacOS 2.1012.03 Privilege Escalation Exploit
|
|
2018-11-14
|
SwitchVPN For MacOS / Windows 2.1012.03 Man-In-The-Middle Vulnerability
|
|
2018-11-14
|
OCS Inventory NG ocsreports Shell Upload Vulnerability
|
|
2018-11-14
|
ntpd 4.2.8p10 - Out-of-Bounds Read Exploit
|
|
2018-11-14
|
AMPPS 2.7 - Denial of Service Exploit
|
|
2018-11-14
|
Bosch Video Management System 8.0 - Configuration Client Denial of Service (PoC)
|
|
2018-11-14
|
DoceboLMS 1.2 - SQL Injection / Arbitrary File Upload
|
|
2018-11-14
|
Electricks eCommerce 1.0 - Persistent Cross-Site Scripting
|
|
2018-11-14
|
Pedidos 1.0 - SQL Injection
|
|
2018-11-14
|
Rmedia SMS 1.0 - SQL Injection
|
|
2018-11-14
|
SwitchVPN for macOS 2.1012.03 - Privilege Escalation
|
CVE-2018-18860
|
2018-11-14
|
Advanced Comment System 1.0 - SQL Injection
|
CVE-2018-18619
|
2018-11-14
|
Dell OpenManage Network Manager 6.2.0.51 SP3 - Multiple Vulnerabilities
|
CVE-2018-15767
|
2018-11-14
|
Atlassian Jira - Authenticated Upload Code Execution (Metasploit)
|
|
2018-11-14
|
AMPPS 2.7 - Denial of Service (PoC)
|
|
2018-11-14
|
EdTv 2 - 'id' SQL Injection
|
|
2018-11-14
|
Electricks eCommerce 1.0 - Cross-Site Request Forgery (Change Admin Password)
|
|
2018-11-14
|
Helpdezk 1.1.1 - 'query' SQL Injection
|
|
2018-11-14
|
ntpd 4.2.8p10 - Out-of-Bounds Read (PoC)
|
CVE-2018-7182
|
2018-11-14
|
iServiceOnline 1.0 - 'r' SQL Injection
|
|
2018-11-14
|
Linux/x86 - Bind (99999/TCP) NetCat Traditional (/bin/nc) Shell (/bin/bash) Shellcode 58 bytes
|
|
2018-11-13
|