Sony Playstation 4 (PS4) < 7.02 - 'ValidationMessage::buildBubbleTree()' Use-After-Free WebKit Code Execution (PoC)
|
|
2020-12-21
|
Sony Playstation 4 (PS4) < 6.72 - 'ValidationMessage::buildBubbleTree()' Use-After-Free WebKit Code Execution (PoC)
|
|
2020-12-21
|
Online Marriage Registration System 1.0 - 'searchdata' SQL Injection
|
|
2020-12-21
|
Point of Sale System 1.0 - Multiple Stored XSS
|
|
2020-12-21
|
Flexmonster Pivot Table & Charts 2.7.17 - 'Remote JSON' Reflected XSS
|
|
2020-12-21
|
Flexmonster Pivot Table & Charts 2.7.17 - 'To remote CSV' Reflected XSS
|
|
2020-12-21
|
Flexmonster Pivot Table & Charts 2.7.17 - 'To OLAP' Reflected XSS
|
|
2020-12-21
|
Flexmonster Pivot Table & Charts 2.7.17 - 'Remote Report' Reflected XSS
|
|
2020-12-21
|
SCO Openserver 5.0.7 - 'outputform' Command Injection
|
|
2020-12-21
|
SCO Openserver 5.0.7 - 'section' Reflected XSS
|
|
2020-12-21
|
Spiceworks 7.5 - HTTP Header Injection
|
|
2020-12-21
|
Academy-LMS 4.3 - Stored XSS
|
|
2020-12-21
|
Spotweb 1.4.9 - 'search' SQL Injection
|
|
2020-12-21
|
Queue Management System 4.0.0 - "Add User" Stored XSS
|
|
2020-12-21
|
Wordpress Plugin Contact Form 7 5.3.1 - Unrestricted File Upload
|
|
2020-12-21
|
FRITZ!Box 7.20 - DNS Rebinding Protection Bypass
|
|
2020-12-19
|
Xeroneit Library Management System 3.1 - "Add Book Category " Stored XSS
|
|
2020-12-19
|
SyncBreeze 10.0.28 - 'login' Denial of Service (Poc)
|
|
2020-12-19
|
Smart Hospital 3.1 - "Add Patient" Stored XSS
|
|
2020-12-19
|
Wordpress Plugin Duplicator 1.3.26 - Unauthenticated Arbitrary File Read (Metasploit)
|
|
2020-12-19
|
Alumni Management System 1.0 - 'id' SQL Injection
|
|
2020-12-19
|
Alumni Management System 1.0 - "Course Form" Stored XSS
|
|
2020-12-19
|
Alumni Management System 1.0 - Unrestricted File Upload To RCE
|
|
2020-12-19
|
Point of Sale System 1.0 - Authentication Bypass
|
|
2020-12-19
|
Nxlog Community Edition 2.10.2150 - DoS (Poc)
|
|
2020-12-19
|
Victor CMS 1.0 - Multiple SQL Injection (Authenticated)
|
|
2020-12-19
|
PHPJabbers Appointment Scheduler 2.3 - Reflected XSS (Cross-Site Scripting)
|
|
2020-12-19
|
Employee Record System 1.0 - Multiple Stored XSS
|
|
2020-12-19
|
Interview Management System 1.0 - 'id' SQL Injection
|
|
2020-12-19
|
Interview Management System 1.0 - Stored XSS in Add New Question
|
|
2020-12-19
|
Online Tours & Travels Management System 1.0 - "id" SQL Injection
|
|
2020-12-19
|
Customer Support System 1.0 - 'id' SQL Injection
|
|
2020-12-19
|
Customer Support System 1.0 - "First Name" & "Last Name" Stored XSS
|
|
2020-12-19
|
Medical Center Portal Management System 1.0 - 'id' SQL Injection
|
|
2020-12-19
|
Content Management System 1.0 - 'id' SQL Injection
|
|
2020-12-19
|
Content Management System 1.0 - 'email' SQL Injection
|
|
2020-12-19
|
Content Management System 1.0 - 'First Name' Stored XSS
|
|
2020-12-19
|
Linksys RE6500 1.0.11.001 - Unauthenticated RCE
|
|
2020-12-19
|
Dolibarr ERP-CRM 12.0.3 - Remote Code Execution (Authenticated)
|
|
2020-12-19
|
Seotoaster 3.2.0 - Stored XSS on Edit page properties
|
|
2020-12-19
|
PrestaShop ProductComments 4.2.0 - 'id_products' Time Based Blind SQL Injection
|
|
2020-12-19
|
Magic Home Pro 1.5.1 - Authentication Bypass
|
|
2020-12-19
|
Raysync 3.3.3.8 - RCE
|
|
2020-12-19
|
Grav CMS 1.6.30 Admin Plugin 1.9.18 - 'Page Title' Persistent Cross-Site Scripting
|
|
2020-12-19
|
GitLab 11.4.7 - Remote Code Execution (Authenticated)
|
|
2020-12-19
|
Cisco ASA 9.14.1.10 and FTD 6.6.0.1 - Path Traversal (2)
|
|
2020-12-19
|
Solaris SunSSH 11.0 x86 - libpam Remote Root
|
|
2020-12-19
|
Online Marriage Registration System (OMRS) 1.0 - Remote Code Execution (Authenticated)
|
|
2020-12-19
|
libbabl 0.1.62 - Broken Double Free Detection (PoC)
|
|
2020-12-19
|
Task Management System 1.0 - 'page' Local File Inclusion
|
|
2020-12-19
|