Posts

Senayan Library Management System 9.1.0 SQL Injection

Senayan Library Management System 9.0.0 SQL Injection

Senayan Library Management System 9.0.0 Cross Site Scripting

Senayan Library Management System 9.4.0 Cross Site Scripting

ILIAS eLearning 7.15 Command Injection / XSS / LFI / Open Redirect

Intel Data Center Manager 4.1 SQL Injection

Intel Data Center Manager 5.1 Local Privilege Escalation

Zhuhai Suny Technology ESL Tag Forgery / Replay Attacks

snap-confine must_mkdir_and_open_with_perms() Race Condition

Planet eStream Code Execution / SQL Injection / XSS / Broken Control

Delta Electronics DVW-W02W2-E2 2.42 Command Injection

Delta Electronics DX-2100-L1-CN 1.5.0.10 Command Injection / XSS

TOR Virtual Network Tunneling Tool 0.4.7.12

Windows HTTP.SYS Kerberos PAC Verification Bypass / Privilege Escalation

SentinelOne sentinelagent 22.3.2.5 Privilege Escalation

py7zr 0.20.0 Directory Traversal

pixman pixman_sample_floor_y Integer Overflow

VMware vCenter vScalation Privilege Escalation

Evernote Web Clipper Same-Origin Policy Bypass

Senayan Library Management System 9.5.1 SQL Injection

Drupal H5P Module 2.0.0 Zip Slip Traversal

Automotive Shop Management System 1.0 SQL Injection

Zillya Total Security 3.0.2367.0 / 3.0.2368.0 Local Privilege Escalation

Backdoor.Win32.Delf.gj MVID-2022-0663 Information Disclosure

IBM Websphere Application Server 7.0 Cross Site Scripting

perfSONAR 4.4.5 Cross Site Request Forgery

perfSONAR 4.4.4 Open Proxy / Relay

Microsoft Exchange ProxyNotShell Remote Code Execution

Intel Data Center Manager 4.1.1.45749 Authentication Bypass / Spoofing

OX App Suite 7.10.6 Cross Site Scripting / SSRF / Resource Consumption

Hirschmann (Belden) BAT-C2 8.8.1.0R8 Command Injection

Remote Control Collection Remote Code Execution

Concrete CMS 9.1.3 XPATH Injection

vBulletin 5.5.2 PHP Object Injection

Backdoor.Win32.Autocrat.b MVID-2022-0660 Weak Hardcoded Credential

Win32.Ransom.Conti MVID-2022-0662 Cryptography Logic Flaw

Trojan.Win32.DarkNeuron.gen MVID-2022-0661 Named Pipe NULL DACL

Helmet Store Showroom 1.0 SQL Injection

Sanitization Management System 1.0 SQL Injection

Chrome blink::LocalFrameView::PerformLayout Use-After-Free

XNU vm_object Use-After-Free

XNU Dangling PTE Entry

F5 BIG-IP iControl Remote Command Execution

Ecommerce 1.0 Cross Site Scripting / Open Redirect

Backdoor.Win32.Serman.a MVID-2022-0659 Unauthenticated Open Proxy

ChurchInfo 1.2.13-1.3.0 Remote Code Execution

F5 BIG-IP iControl Cross Site Request Forgery

Roxy Fileman 1.4.6 Remote Shell Upload

Boa Web Server 0.94.13 / 0.94.14 Authentication Bypass