Posts

Cisco AnyConnect Privilege Escalation

MailDepot 2032 SP2 Session Expiration

DOMOS 5.8 Command Injection

Qiata FTA 1.70.19 Cross Site Scripting

Corona Exposure Notifications API Data Leakage

WebsiteBaker 2.12.2 Remote Code Execution

BearShare Lite 5.2.5 Buffer Overflow

CloudMe 1.11.2 Buffer Overflow

Mida eFramework 2.8.9 Remote Code Execution

Joplin 1.0.245 Cross Site Scripting / Code Execution

MSI Ambient Link Driver 1.0.0.8 Privilege Escalation

Microsoft Windows Update Orchestrator Unchecked ScheduleWork Call

MaraCMS 7.5 Remote Code Execution

WordPress WP Courses 2.0.29 Information Disclosure / Authorization Bypass

BigTree CMS 4.4.10 Remote Code Execution

Anchor CMS 0.12.7 Cross Site Scripting

Simple Online Food Ordering System 1.0 SQL Injection

Online Food Ordering System 1.0 Remote Code Execution

Artica Proxy 4.30.000000 Authentication Bypass / Command Injection

Jenkins 2.56 CLI Deserialization / Code Execution

Visitor Management System In PHP 1.0 Cross Site Scripting

Visitor Management System In PHP 1.0 SQL Injection

Seat Reservation System 1.0 SQL Injection

GoogleCloudPlatform OSConfig Privilege Escalation

Flatpress Add Blog 1.0.3 Cross Site Scripting

Comodo Unified Threat Management Web Console 2.7.0 Remote Code Execution

Seat Reservation System 1.0 Shell Upload

Mida eFramework 2.9.0 Backdoor Access

BlackCat CMS 1.3.6 Cross Site Request Forgery

Seat Reservation System 1.0 SQL Injection

Online Shop Project 1.0 SQL Injection

ForensiTAppxService 2.2.0.4 Unquoted Service Path

VyOS restricted-shell Escape / Privilege Escalation

B-swiss 3 Digital Signage System 3.6.5 Backdoor Remote Code Execution

B-swiss 3 Digital Signage System 3.6.5 Cross Site Request Forgery

B-swiss 3 Digital Signage System 3.6.5 Database Disclosure

TP-Link Cloud Cameras NCXXX Bonjour Command Injection

Navy Federal Cross Site Scripting

Mantis Bug Tracker 2.3.0 Remote Code Execution

SpamTitan 7.07 Remote Code Execution

D-Link DGS-1210-28 Denial Of Service

Microsoft Spooler Local Privilege Elevation

Microsoft SQL Server Reporting Services 2016 Remote Code Execution

Microsoft Exchange Server DlpUtils AddTenantDlpPolicy Remote Code Execution

Mida Solutions eFramework ajaxreq.php Command Injection

1CRM 8.6.7 Insecure Direct Object Reference

Acronis Cyber Backup 12.5 Build 16341 Server-Side Request Forgery

Piwigo 2.10.1 Cross Site Scripting

Zerologon Proof Of Concept

ModSecurity 3.0.x Denial Of Service