|
Open STA Manager 2.3 - Arbitrary File Download
|
|
2018-11-04
|
|
MPS Box 0.1.8.0 - 'uuid' SQL Injection
|
|
2018-11-04
|
|
AjentiCP 1.2.23.13 - Cross-Site Scripting
|
CVE-2018-18548
|
2018-11-04
|
|
AiOPMSD Final 1.0.0 - 'q' SQL Injection
|
|
2018-11-04
|
|
Simple POS and Inventory 1.0 - 'cat' SQL Injection
|
|
2018-11-04
|
|
ClipBucket 2.8 - 'id' SQL Injection
|
|
2018-11-04
|
|
Adult Filter 1.0 - Buffer Overflow (SEH)
|
|
2018-11-04
|
|
User Management 1.1 - Cross-Site Scripting
|
CVE-2018-18419
|
2018-11-04
|
|
Delta Sql 1.8.2 - Arbitrary File Upload
|
|
2018-11-04
|
|
Simple Chat System 1.0 - 'id' SQL Injection
|
|
2018-11-04
|
|
phptpoint Hospital Management System 1.0 - 'user' SQL injection
|
|
2018-11-04
|
|
phptpoint Pharmacy Management System 1.0 - 'username' SQL injection
|
|
2018-11-04
|
|
Ekushey Project Manager CRM 3.1 - Cross-Site Scripting
|
CVE-2018-18417
|
2018-11-04
|
|
ProjeQtOr Project Management Tool 7.2.5 - Remote Code Execution
|
|
2018-11-04
|
|
BORGChat 1.0.0 build 438 - Denial of Service (PoC)
|
|
2018-11-04
|
|
D-Link Routers - Directory Traversal
|
CVE-2018-10822
|
2018-11-04
|
|
D-Link Routers - Plaintext Password
|
CVE-2018-10824
|
2018-11-04
|
|
D-Link Routers - Command Injection
|
CVE-2018-10823
|
2018-11-04
|
|
Microsoft Data Sharing - Local Privilege Escalation (PoC)
|
|
2018-11-04
|
|
Apache OFBiz 16.11.04 - XML External Entity Injection
|
|
2018-11-04
|
|
LANGO Codeigniter Multilingual Script 1.0 - Cross-Site Scripting
|
CVE-2018-18416
|
2018-11-04
|
|
exim 4.90 - Remote Code Execution
|
CVE-2018-6789
|
2018-11-04
|
|
Adult Filter 1.0 - Denial of Service (PoC)
|
|
2018-11-04
|
|
Linux/x86 - execve(/bin/cat /etc/ssh/sshd_config) Shellcode 44 Bytes
|
|
2018-11-04
|
|
Axioscloud Sissiweb Registro Elettronico 7.0.0 - 'Error_desc' Cross-Site Scripting
|
CVE-2018-18437
|
2018-11-04
|
|
Fifa Master XLS 2.3.2 - 'usw' SQL Injection
|
|
2018-11-04
|
|
SG ERP 1.0 - 'info' SQL Injection
|
|
2018-11-04
|
|
MGB OpenSource Guestbook 0.7.0.2 - 'id' SQL Injection
|
|
2018-11-04
|
|
SIM-PKH 2.4.1 - 'id' SQL Injection
|
|
2018-11-04
|
|
School ERP Pro+Responsive 1.0 - 'fid' SQL Injection
|
|
2018-11-04
|
|
School ERP Pro+Responsive 1.0 - Arbitrary File Download
|
|
2018-11-04
|
|
ServersCheck Monitoring Software 14.3.3 - 'id' SQL Injection
|
|
2018-11-04
|
|
Microsoft Windows 10 - Local Privilege Escalation (UAC Bypass)
|
|
2018-11-04
|
|
SIM-PKH 2.4.1 - Arbitrary File Upload
|
|
2018-11-04
|
|
ServersCheck Monitoring Software 14.3.3 - Arbitrary File Write
|
|
2018-11-04
|
|
Appsource School Management System 1.0 - 'student_id' SQL Injection
|
|
2018-11-04
|
|
Viva Visitor & Volunteer ID Tracking 0.95.1 - 'fname' SQL Injection
|
|
2018-11-04
|
|
The Open ISES Project 3.30A - Arbitrary File Download
|
|
2018-11-04
|
|
eNdonesia Portal 8.7 - 'artid' SQL Injection
|
|
2018-11-04
|
|
Windows - SetImeInfoEx Win32k NULL Pointer Dereference (Metasploit)
|
CVE-2018-8120
|
2018-11-04
|
|
Apple iOS Kernel - Use-After-Free due to bad Error Handling in Personas
|
|
2018-11-04
|
|
Apple iOS/macOS - Kernel Memory Corruption due to Integer Overflow in IOHIDResourceQueue::enqueueReport
|
|
2018-11-04
|
|
Apple iOS/macOS - Sandbox Escape due to mach Message sent from Shared Memory
|
|
2018-11-04
|
|
Apple iOS - Kernel Stack Memory Disclosure due to Failure to Check copyin Return Value
|
|
2018-11-04
|
|
Apple iOS/macOS - Sandbox Escape due to Trusted Length Field in Shared Memory used by HID Event Subsystem
|
|
2018-11-04
|
|
Apple Intel GPU Driver - Use-After-Free/Double-Delete due to bad Locking
|
|
2018-11-04
|
|
School ERP Ultimate 2018 - 'fid' SQL Injection
|
|
2018-11-04
|
|
The Open ISES Project 3.30A - 'tick_lat' SQL Injection
|
|
2018-11-04
|
|
Audacity 2.3 - Denial of Service (PoC)
|
|
2018-11-04
|
|
Oracle Siebel CRM 8.1.1 - CSV Injection
|
|
2018-11-04
|