Posts

Microsoft Windows 10 SMB 3.1.1 Local Privilege Escalation

DrayTek Vigor2960 / Vigor3900 / Vigor300B Remote Command Execution

FlashFXP 4.2.0 Build 1730 Denial Of Service

Grandstream UCM6200 Series CTI Interface SQL Injection

Grandstream UCM6200 Series WebSocket 1.0.20.20 SQL Injection

10-Strike Network Inventory Explorer 9.03 Buffer Overflow

Joomla Fabrik 3.9.11 Directory Traversal

Zen Load Balancer 3.10.1 Remote Code Execution

WordPress Event-Registration 5.43 Arbitrary File Upload

DesignMasterEvents CMS 1.0 SQL Injection / Cross Site Scripting

Odin Secure FTP Expert 7.6.3 Site Info Denial Of Service

Redis Replication Code Execution

Micro Focus Vibe 4.0.6 Cross Site Scripting

Micro Focus Vibe 4.0.6 HTML Injection

IBM Cognos TM1 / IBM Planning Analytics Server Configuration Overwrite / Code Execution

DLINK DWL-2600 Authenticated Remote Command Injection

codeBeamer 9.5 Cross Site Scripting

rConfig 3.9.4 searchField Remote Code Execution

FreeCommander XE 2020 Pathname Buffer Overflow

Webexcels Ecommerce CMS 2.x SQL Injection / Cross Site Scripting

ECK Hotel 1.0 Cross Site Request Forgery

Everest 5.50.2100 Denial Of Service

Jinfornet Jreport 15.6 Directory Traversal

Easy RM To MP3 Converter 2.7.3.700 Local Buffer Overflow

WordPress StatTraq 1.3.0 SQL Injection

Soluzione Globale Ecommerce CMS 1 SQL Injection

SharePoint Workflows XOML Injection

Linux PTRACE_TRACEME Local Root

TP-Link Archer C50 V3 Denial of Service

Centreo 19.10.8 Remote Code Execution

WordPress WP Forms 1.5.8.2 Cross Site Scripting

HP ThinPro 6.x / 7.x Privileged Command Injection

HP ThinPro 6.x / 7.x Citrix Command Injection

LeptonCMS 4.5.0 Cross Site Scripting

SITS:Vision 9.7.0 Authentication Bypass

10-Strike Network Inventory Explorer 8.54 Buffer Overflow

HP ThinPro 6.x / 7.x Privilege Escalation

HP ThinPro 6.x / 7.x Filter Bypass

10-Strike Network Inventory Explorer 8.54 Unquoted Service Path

HP ThinPro 6.x / 7.x Information Disclosure

Android Bluetooth Remote Denial Of Service

AVAST SecureLine 5.5.522.0 Unquoted Service Path

Joomla GMapFP 3.30 Arbitrary File Upload

SialWeb CMS eCommerce 1.0 / 1.1 Cross Site Scripting / SQL Injection

UCM6202 1.0.18.13 Remote Command Injection

WordPress WPForms 1.5.9 Cross Site Scripting

UliCMS 2020.1 Cross Site Scripting

Veyon 4.3.4 Unquoted Service Path

Horde 5.2.22 CSV Import Code Execution

Mandos Encrypted File System Unattended Reboot Utility 1.8.10