Posts

BSCW Server Remote Code Execution

BSCW Server XML Injection

Backdoor.Win32.Hupigon.aejq Traversal

Backdoor.Win32.Hupigon.aejq Man-In-The-Middle

Backdoor.Win32.Hupigon.aejq Authentication Bypass / Code Execution

Backdoor.Win32.BO2K.11.d Buffer Overflow

Git LFS Clone Command Execution

WordPress ProfilePress 3.1.3 Privilege Escalation

Backdoor.Win32.Delf.wr Man-In-The-Middle

Backdoor.Win32.Delf.wr Authentication Bypass / Code Execution

Umbraco CMS 8.9.1 Traversal / Arbitrary File Write

Online Leave Management System 1.0 SQL Injection

Projectsend r1295 Cross Site Scripting

Ship Ferry Ticket Reservation System 1.0 SQL Injection

Backdoor.Win32.Delf.um Authentication Bypass / Code Execution

Strapi 3.0.0-beta Authentication Bypass

Backdoor.Win32.Hupigon.abe Unauthenticated Open Proxy

Backdoor.Win32.Antilam.11 Code Execution

Strapi CMS 3.0.0-beta.17.4 Remote Code Execution

Trojan-Proxy.Win32.Raznew.gen Unauthenticated Open Proxy

Backdoor.Win32.DarkKomet.aspl Insecure Permissions

Bus Pass Management System 1.0 SQL Injection

HEUR.Trojan.Win32.Delf.gen Insecure Permissions

Strapi 3.0.0-beta.17.7 Remote Code Execution

MySQL User-Defined (Linux) x32 / x86_64 sys_exec Local Privilege Escalation

ProcessMaker 3.5.4 Local File Inclusion

Online Leave Management System 1.0 Shell Upload

HP OfficeJet 4630/7110 MYM1FN2025AR 2117A Cross Site Scripting

WordPress Mail Masta 1.0 Local File Inclusion

Online Traffic Offense Management System 1.0 Remote Code Execution

Shoutcast Server 2.6.0.753 Crash

RaspAP 2.6.6 Remote Code Execution

Simple Phone Book/Directory 1.0 SQL Injection

JavaScript Static Analysis

Microsoft Exchange ProxyShell Remote Code Execution

Online Traffic Offense Management System 1.0 SQL Injection

NetModule Router Software Password Handling / Session Fixation

Laundry Booking Management System 1.0 SQL Injection

Laundry Booking Management System 1.0 Cross Site Scripting

Altus Sistemas de Automacao Products CSRF / Command Injection / Hardcoded Credentials

WebKit Element::dispatchMouseEvent Heap Use-After-Free

JavaScriptCore Crash Proof Of Concept

WebKit WebCore::FrameLoader::PolicyChecker::checkNavigationPolicy Heap Use-After-Free

Charity Management System CMS 1.0 Code Execution / XSS / SQL Injection

Simple Image Gallery 1.0 Shell Upload

Crossfire Server 1.0 Buffer Overflow

Crime Records Management System 1.0 SQL Injection

Hospital Management System Cross Site Scripting

COVID-19 Testing Management System 1.0 SQL Injection

Lucee Administrator imgProcess.cfm Arbitrary File Write