Posts

Quest KACE System Management Appliance 8.0 (Build 8.0.318) XSS / Traversal / Code Execution / SQL Injection

Windows UAC Protection Bypass (Via Slui File Handler Hijack)

Quest DR Series Disk Backup Software 4.0.3 Code Execution

PageKit CMS 1.0.13 Cross Site Scripting

TAC Xenta 511 / 911 Credential Disclosure

New STAR 2.1 Cross Site Scripting / SQL Injection

PHP Dashboards NEW 5.5 SQL Injection

CSV Import And Export 1.1.0 Cross Site Scripting / SQL Injection

Grid Pro Big Data 1.0 SQL Injection

Chitasoft 3.6.2 SQL Injection

Brother HL-L2340D / HL-L2380DW Cross Site Scripting

AXON PBX 2.02 Cross Site Scripting

AXON PBX 2.02 DLL Hijacking

Linux/x86 TCP/4444 Bindshell Shellcode

Microsoft Edge Chakra EntrySimpleObjectSlotGetter Type Confusion

Linux/ARM Egghunter + /bin/sh Shellcode

Linux/x86 Egghunter + access() Shellcode

Linux/ARM - Egghunter + /bin/sh Shellcode (32 bytes)

New STAR 2.1 - SQL Injection / Cross-Site Scripting

Grid Pro Big Data 1.0 - SQL Injection

CSV Import & Export 1.1.0 - SQL Injection / Cross-Site Scripting

PHP Dashboards NEW 5.5 - 'email' SQL Injection

Microsoft Edge Chakra - EntrySimpleObjectSlotGetter Type Confusion

GNU Barcode 0.99 Memory Leak

IBM QRadar SIEM Code Execution / Authentication Bypass

GNU Barcode 0.99 Buffer Overflow

Vgate iCar2 WiFi OBD2 Dongle Inadequate Access Protections

foilChat Sign Up Email PIN Confirmation Bypass

SharePoint Site User Enumeration

TAC Xenta 511/911 - Directory Traversal

Linux/x86 - EggHunter + access() Shellcode (38 bytes)

Linux/x86 - Bind (4444/TCP) Shell Shellcode (105 bytes)

Yosoro 1.0.4 Remote Code Execution

SearchBlox 8.6.6 Cross Site Request Forgery

Facebook Clone Script 1.0.5 Cross Site Request Forgery

Facebook Clone Script 1.0.5 SQL Injection

Pivotal Spring Java Framework 5.0.x Remote Code Execution

MyBB ChangUonDyU 1.0.2 Cross Site Scripting

Sitemakin SLAC 1.0 SQL Injection

IssueTrak 7.0 SQL Injection

WordPress Events Calendar 1.0 SQL Injection

Joomla Full Social 1.1.0 SQL Injection

Joomla JoomOCShop 1.0 Cross Site Request Forgery

Joomla jCart For OpenCart 2.3.0.2 Cross Site Request Forgery

wityCMS 0.6.1 Cross Site Scripting

Siemens SIMATIC S7-300 CPU Denial Of Service

DomainMod 4.09.03 Cross Site Scripting

TP-Link TL-WR840N / TL-WR841N Authentication Bypass

CloudMe Sync SEH Buffer Overflow

Linux/x86 TCP/5555 Bindshell Shellcode