Posts

Pi-Hole Remove Commands Linux Privilege Escalation

Panasonic Sanyo CCTV Network Camera 2.03-0x Cross Site Request Forgery

ObjectPlanet Opinio 7.13 Shell Upload

ObjectPlanet Opinio 7.13 Expression Language Injection

ObjectPlanet Opinio 7.13 / 7.14 XML Injection

Microsoft Exchange AD Schema Misconfiguration Privilege Escalation

Oracle Fatwire 6.3 Cross Site Scripting / SQL Injection

Longjing Technology BEMS API 1.21 Remote Arbitrary File Download

Denver IP Camera SHO-110 Snapshot Disclosure

ObjectPlanet Opinio 7.12 Cross Site Scripting

CloverDX 5.9.0 Code Execution / Cross Site Request Forgery

Care2x Integrated Hospital Info System 2.7 SQL Injection

IntelliChoice eFORCE Software Suite 2.5.9 Username Enumeration

Backdoor.Win32.WinShell.40 Code Execution

Event Registration System With QR Code 1.0 Shell Upload

Denver Smart Wifi Camera SHC-150 Remote Code Execution

eGain Chat 15.5.5 Cross Site Scripting

TripSpark VEO Transportation SQL Injection

PHP 7.3.15-3 PHP_SESSION_UPLOAD_PROGRESS Session Data Injection

WordPress Social Warfare 3.5.2 Remote Code Execution

Exploiting PHP_SESSION_UPLOAD_PROGRESS

WordPress SP Project And Document Remote Code Execution

Backdoor.Win32.Nbdd.bgz Buffer Overflow

Backdoor.Win32.Bifrose.acci Buffer Overflow

WordPress Modern Events Calendar Remote Code Execution

Backdoor.Win32.PsyRat.b Code Execution

NoteBurner 2.35 Denial Of Service

Backdoor.Win32.PsyRat.b Denial Of Service

Backdoor.Win32.Agent.cu Code Execution

Backdoor.Win32.Agent.cu Man-In-The-Middle

XOS Shop 1.0.9 Arbitrary File Deletion

Backdoor.Win32.Agent.cu Authentication Bypass

Leawo Prof. Media 11.0.0.1 Denial Of Service

Backdoor.Win32.Mazben.me Unauthenticated Open Proxy

Backdoor.Win32.Hupigon.aaur Unauthenticated Open Proxy

Elasticsearch ECE 7.13.3 Database Disclosure

Zabbix 5.x SQL Injection / Cross Site Scripting

ElasticSearch 7.13.3 Memory Disclosure

Microsoft SharePoint Server 2019 Remote Code Execution

WordPress Simple Post 1.1 Cross Site Scripting

Vehicle Parking Management System 1.0 SQL Injection

Vehicle Parking Management System 1.0 Cross Site Scripting

Sage X3 Administration Service Authentication Bypass / Command Execution

Wordpress Backup Guard Authenticated Remote Code Execution

Sequoia: A Deep Root In Linux's Filesystem Layer

Ampache 4.4.2 Cross Site Scripting

CSZ CMS 1.2.9 Arbitrary File Deletion

News Portal Project 3.1 SQL Injection

Online Shopping Portal 3.1 SQL Injection

KevinLAB BEMS 1.0 Authenticated File Path Traversal / Information Disclosure