Posts

Yum Package Manager Persistence

Spring Cloud Config 2.1.x Path Traversal

HumHub 1.3.12 Cross Site Scripting

Intelbras IWR 3000N 1.5.0 Cross Site Request Forgery

Apache Archiva 2.2.3 Cross Site Scripting

Intelbras IWR 3000N Denial Of Service

Domoticz 4.10577 Unauthenticated Remote Command Execution

Veeam ONE Reporter 9.5.0.3201 Cross Site Scripting

Veeam ONE Reporter 9.5.0.3201 Cross Site Request Forgery

Netgear DGN2200 / DGND3700 Admin Password Disclosure

Freefloat FTP Server 1.0 STOR Buffer Overflow

Freefloat FTP Server 1.0 SIZE Buffer Overflow

Revive Adserver Deserialization / Open Redirect

Linux Missing Lockdown

AIS Logistics ESEL-Server SQL Injection / Code Execution

APT Package Manager Persistence

Pimcore Unserialize Remote Code Execution

Agent Tesla Botnet Information Disclosure

Joomla JiFile 2.3.1 Arbitrary File Download

SGI IRIX 6.4.x Run-Time Linker Arbitrary File Creation

Sierra Wireless AirLink ES450 ACEManager Information Exposure

Sierra Wireless AirLink ES450 ACEManager template_load.cgi Information Disclosure

Joomla ARI Quiz 3.7.4 SQL Injection

Sierra Wireless AirLink ES450 ACEManager Embedded_Ace_Set_Task.cgi Permission Assignment

Sierra Wireless AirLink ES450 ACEManager Embedded_Ace_Get_Task.cgi Information Disclosure

Sierra Wireless AirLink ES450 ACEManager Information Disclosure

Sierra Wireless AirLink ES450 ACEManager Cross Site Request Forgery

Sierra Wireless AirLink ES450 SNMPD Hard-Coded Credentials

Sierra Wireless AirLink ES450 ACEManager upload.cgi Remote Code Execution

Sierra Wireless AirLink ES450 ACEManager ping_result.cgi Cross Site Scripting

Sierra Wireless AirLink ES450 ACEManager upload.cgi Unverified Password Change

Sierra Wireless AirLink ES450 ACEManager iplogging.cgi Command Injection

Apache Pluto 3.0.0 / 3.0.1 Cross Site Scripting

GAT-Ship Web Module Unrestricted File Upload

NSauditor 3.1.2.0 Name Denial Of Service

NSauditor 3.1.2.0 Community Denial Of Service

Oracle WebLogic Server Deserialization Remote Command Execution Vulnerability

ISC BIND CVE-2019-6467 Remote Denial of Service Vulnerability

systemd DynamicUser SetUID Binary Creation

Lavavo CD Ripper 4.20 Buffer Overflow

osTicket 1.11 Cross Site Scripting / Local File Inclusion

AnMing MP3 CD Burner 2.0 Denial Of Service

JioFi 4G M2S 1.0.2 Denial Of Service

JioFi 4G M2S 1.0.2 Cross Site Scripting

Backup Key Recovery 2.2.4 Denial Of Service

HeidiSQL Portable 10.1.0.5464 Denial Of Service

Atlassian Confluence Server and Confluence Data Center Directory Traversal Vulnerability

GraphicsMagick CVE-2019-11505 Heap Buffer Overflow Vulnerability

TIBCO ActiveMatrix BPM CVE-2019-8995 Open Redirection Vulnerability

Chrome NewFixedDoubleArray Integer Overflow