Posts

Faleemi Windows Desktop Software - (DDNS/IP) Local Buffer Overflow

Vtiger CRM 6.3.0 - Authenticated Arbitrary File Upload (Metasploit)

Tenda FH303/A300 Firmware V5.07.68_EN - Remote DNS Change

Tenda W3002R/A302/w309r Wireless Router V5.07.64_en - Remote DNS Change (PoC)

D-Link DIR-850L Wireless AC1200 Dual Band Gigabit Cloud Router - Authentication Bypass

Tenda W316R Wireless Router 5.07.50 - Remote DNS Change (PoC)

Systematic SitAware - NVG Denial of Service

osCommerce 2.3.4.1 - Remote Code Execution

Advantech WebAccess < 8.1 - webvrpcs DrawSrv.dll Path BwBuildPath Stack-Based Buffer Overflow

Tenda W308R v2 Wireless Router 5.07.48 - Cookie Session Weakness Remote DNS Change PoC

SysGauge 4.5.18 - Local Denial of Service

WordPress Plugin WP Security Audit Log 3.1.1 - Sensitive Information Disclosure

Homematic CCU2 2.29.23 - Remote Command Execution

Joomla! Component Acymailing Starter 5.9.5 - CSV Macro Injection

Joomla! Component AcySMS 3.5.0 - CSV Macro Injection

Wordpress Plugin Contact Form 7 to Database Extension 2.10.32 - CSV Injection

Allok AVI DivX MPEG to DVD Converter 2.6.1217 - Buffer Overflow (SEH)

Wordpress Plugin Relevanssi 4.0.4 - Reflected Cross-Site Scripting

Allok WMV to AVI MPEG DVD WMV Converter 4.6.1217 - Buffer Overflow

Allok Video Joiner 4.6.1217 - Stack-Based Buffer Overflow

Homematic CCU2 2.29.23 - Arbitrary File Write

Open-AuditIT Professional 2.1 - Cross-Site Request Forgery

MiniCMS 1.10 - Cross-Site Request Forgery

CA Workload Automation AE / CA Workload Control Center SQL Injection / Code Execution

Crea8Social Social Network Script Pro / Business Cross Site Scripting

glibc LD_AUDIT libmemusage.so RHEL-Based Arbitrary DSO Load Privilege Escalation

Tenda FH303/A300 5.07.68_EN Remote DNS Changer

Tenda W3002R/A302/w309r Wireless Router 5.07.64_en DNS Changer

Tenda W316R Wireless Router 5.07.50 Remote DNS Changer

Cisco IOS XE Software Multiple Cross Site Scripting Vulnerabilities

Exodus Wallet (ElectronJS Framework) - Remote Code Execution (Metasploit)

GitStack - Unsanitized Argument Remote Code Execution (Metasploit)

Joomla Component Fields - SQLi Remote Code Execution (Metasploit)

CA API Developer Portal Cross Site Scripting

ManageEngine Application Manager Remote Code Execution

Tenda W308R V2 Wireless Router 5.07.48 DNS Changer

GitStack 2.3.10 Unsanitized Argument Remote Code Execution

Exodus Wallet (ElectronJS Framework) Remote Code Execution

Joomla Fields SQL Injection / Code Execution

Allok AVI DivX MPEG To DVD Converter 2.6.1217 Buffer Overflow