|
FaceTime - 'readSPSandGetDecoderParams' Stack Corruption
|
CVE-2018-4367
|
2018-11-06
|
|
FaceTime - RTP Video Processing Heap Corruption
|
CVE-2018-4384
|
2018-11-06
|
|
Intel (Skylake / Kaby Lake) - 'PortSmash' CPU SMT Side-Channel
|
CVE-2018-5407
|
2018-11-05
|
|
Voovi Social Networking Script 1.0 - 'user' SQL Injection
|
|
2018-11-05
|
|
Royal TS/X - Information Disclosure
|
CVE-2018-18865
|
2018-11-05
|
|
LiquidVPN 1.36 / 1.37 - Privilege Escalation
|
CVE-2018-18856
|
2018-11-05
|
|
Softros LAN Messenger 9.2 - Denial of Service (PoC)
|
|
2018-11-05
|
|
PHP Proxy 3.0.3 - Local File Inclusion
|
|
2018-11-05
|
|
Mongo Web Admin 6.0 - Information Disclosure
|
|
2018-11-05
|
|
Microsoft Internet Explorer 11 - Null Pointer Difference
|
|
2018-11-05
|
|
Poppy Web Interface Generator 0.8 - Arbitrary File Upload
|
|
2018-11-05
|
|
Virgin Media Hub 3.0 Router - Denial of Service (PoC)
|
|
2018-11-05
|
|
WebVet 0.1a - 'id' SQL Injection
|
|
2018-11-05
|
|
Advantech WebAccess SCADA 8.3.2 - Remote Code Execution
|
CVE-2018-15705
|
2018-11-05
|
|
SiAdmin 1.1 - 'id' SQL Injection
|
|
2018-11-05
|
|
Zint Barcode Generator 2.6 - Denial of Service (PoC)
|
|
2018-11-04
|
|
CdCatalog 2.3.1 - Denial of Service (PoC)
|
|
2018-11-04
|
|
WinMTR 0.91 - Denial of Service (PoC)
|
|
2018-11-04
|
|
Yot CMS 3.3.1 - 'aid' SQL Injection
|
|
2018-11-04
|
|
qdPM 9.1 - 'filter_by' SQL Injection
|
|
2018-11-04
|
|
Gate Pass Management System 2.1 - 'login' SQL Injection
|
|
2018-11-04
|
|
Anviz AIM CrossChex Standard 4.3 - CSV Injection
|
|
2018-11-04
|
|
Jelastic 5.4 - 'host' SQL Injection
|
|
2018-11-04
|
|
Fantastic Blog CMS 1.0 - 'id' SQL Injection
|
|
2018-11-04
|
|
Arm Whois 3.11 - Denial of Service (PoC)
|
|
2018-11-04
|
|
WebDrive 18.00.5057 - Denial of Service (PoC)
|
|
2018-11-04
|
|
Artha The Open Thesaurus 1.0.3.0 - Denial of Service (PoC)
|
|
2018-11-04
|
|
SmartFTP Client 9.0.2615.0 - Denial of Service (PoC)
|
|
2018-11-04
|
|
Loadbalancer.org Enterprise VA MAX 8.3.2 - Remote Code Execution
|
|
2018-11-04
|
|
CI User Login and Management 1.0 - Arbitrary File Upload
|
|
2018-11-04
|
|
Asaancart Simple PHP Shopping Cart 0.9 - Arbitrary File Upload / SQL Injection
|
|
2018-11-04
|
|
Microstrategy Web 7 - Cross-Site Scripting / Directory Traversal
|
CVE-2018-18775
|
2018-11-04
|
|
Instagram Clone 1.0 - Arbitrary File Upload
|
|
2018-11-04
|
|
Notes Manager 1.0 - Arbitrary File Upload
|
|
2018-11-04
|
|
University Application System 1.0 - SQL Injection / Cross-Site Request Forgery (Add Admin)
|
|
2018-11-04
|
|
Expense Management 1.0 - Arbitrary File Upload
|
|
2018-11-04
|
|
SIPp 3.3.990 - Local Buffer Overflow (PoC)
|
|
2018-11-04
|
|
QNAP NetBak Replicator 4.5.6.0607 - Denial of Service (PoC)
|
|
2018-11-04
|
|
Nutanix AOS & Prism < 5.5.5 (LTS) / < 5.8.1 (STS) - SFTP Authentication Bypass
|
|
2018-11-04
|
|
MyBB Downloads 2.0.3 - SQL Injection
|
|
2018-11-04
|
|
ZyXEL VMG3312-B10B < 1.00(AAPP.7) - Credential Disclosure
|
|
2018-11-04
|
|
Phrack: Viewer Discretion Advised: (De)coding an iOS Kernel Vulnerability (Adam Donenfeld)
|
|
2018-11-04
|
|
Any Sound Recorder 2.93 - Buffer Overflow Local (SEH) (Metasploit)
|
|
2018-11-04
|
|
Windows/x64 - Remote (Bind TCP) Keylogger Shellcode (864 bytes) (Generator)
|
|
2018-11-04
|
|
xorg-x11-server 1.20.3 - Privilege Escalation
|
CVE-2018-14665
|
2018-11-04
|
|
NETGEAR WiFi Router R6120 - Credential Disclosure
|
|
2018-11-04
|
|
Webiness Inventory 2.9 - Arbitrary File Upload
|
|
2018-11-04
|
|
phptpoint Pharmacy Management System 1.0 - 'username' SQL Injection
|
|
2018-11-04
|
|
R 3.4.4 (Windows 10 x64) - Buffer Overflow (DEP/ASLR Bypass)
|
|
2018-11-04
|
|
Electricks eCommerce 1.0 - 'prodid' SQL Injection
|
|
2018-11-04
|