Posts

HRSale 1.0.6 Local File Disclosure

WebRTC VP8 Block Decoding Use-After-Free

WebRTC FEC Processing Overflow

WebRTC H264 NAL Packet Type Confusion

MicroFocus Secure Messaging Gateway Remote Code Execution

SonicWall Global Management System XMLRPC

Vtiger CRM 6.3.0 Authenticated Logo Upload Remote Command Execution

Microsoft Wireless Display Adapter 2 Command Injection / Broken Access Control

EMC NetWorker Insecure Transit

Charles Proxy 4.2 Local Root Privilege Escalation

fusermount Restriction Bypass

H2 Database 1.4.197 Information Disclosure

Microsoft Windows Kernel win32k!NtUserConsoleControl Denial Of Service

ipPulse 1.92 Denial Of Service

Allok MOV Converter 4.6.1217 Buffer Overflow

Responsive Filemanager 9.13.1 Server-Side Request Forgery

ProjectSend R1053 SQL Injection

Super CMS Blog Pro PHP Script 1.0 Cross Site Scripting

fusermount - user_allow_other Restriction Bypass and SELinux Label Control

Charles Proxy 4.2 - Local root Privilege Escalation

H2 Database 1.4.197 - Information Disclosure

Microsoft Windows Kernel - 'win32k!NtUserConsoleControl' Denial of Service (PoC)

SoftNAS Cloud CVE-2018-14417 OS Command Injection Vulnerability

IBM Sterling B2B Integrator Multiple Unspecified Cross Site Scripting Vulnerabilities

ipPulse 1.92 - 'IP Address/HostName-Comment' Denial of Service (PoC)

Oracle OAM Padding Oracle CVE-2018-2879 Exploit

Symfony Remote Information Disclosure

NetScanTools Basic Edition 2.5 - 'Hostname' Denial of Service (PoC)

Online Trade 1 - Information Disclosure

QNap QVR Client 5.1.1.30070 - 'Password' Denial of Service (PoC)

SoftNAS Cloud OS Command Injection

WordPress Gwolle Guestbook 2.5.3 Cross Site Scripting

WordPress Strong Testimonials 2.31.4 Cross Site Scripting

Super CMS Blog Pro PHP Script 1.0 SQL Injection / Shell Upload

FTPShell Client 5.22 Remote Buffer Overflow

WordPress Snazzy Maps 1.1.3 Cross Site Scripting

CleanMyMac3 Local Privilege Escalation

Tracto ERC20 Integer Overflow

Axis Network Camera Remote Command Execution

Trivum Multiroom Setup Tool 8.76 Cross Site Request Forgery

Skia SkScan::FillPath Heap Overflow

Core FTP 2.0 XRMD Denial Of Service

10-Strike LANState 8.8 Local Buffer Overflow

Inteno's IOPSYS Local Privilege Escalation

10-Strike Bandwidth Monitor 3.7 Local Buffer Overflow

Nagios Core 4.4.1 Local Denial Of Service

GetGo Download Manager 6.2.1.3200 Denial Of Service

Core FTP 2.0 - 'XRMD' Denial of Service (PoC)