Posts

MyBB Admin Control Remote Code Execution

Microsoft Office MSDT Follina Proof Of Concept

Microsoft Follina Proof Of Concept

Fast Food Ordering System 1.0 Cross Site Scripting

Schneider Electric C-Bus Automation Controller (5500SHAC) 1.10 Remote Root

WordPress User Meta Lite / Pro 2.4.3 Path Traversal

Ingredient Stock Management System 1.0 Account Takeover

Ingredient Stock Management System 1.0 SQL Injection

Fast Food Ordering System 1.0 SQL Injection

Tigase XMPP Server Stanza Smuggling

ChromeOS usbguard Bypass

Exploit Persistent XSS And Unsanitized Injection Vectors For Layer 2 Bypass And COOLHANDLUKE Protocol Creation

Exploiting Persistent XSS And Unsanitized Injection Vectors For DIRECTIVEFOUR Protocol Creation / IP Router-Less Tunneling

qdPM 9.1 Remote Code Execution

Print Spooler Remote DLL Injection

Online Fire Reporting System 1.0 SQL Injection

CLink Office 2.0 SQL Injection

Zoom XMPP Stanza Smuggling Remote Code Execution

iTop Remote Command Execution

m1k1o's Blog 1.3 Remote Code Execution

Blockchain FiatExchanger 2.2.1 SQL Injection

Blockchain AltExchanger 1.2.1 SQL Injection

OpenCart Newsletter 3.0.2.0 SQL Injection

Linux USB Use-After-Free

SAP Application Server ABAP / ABAP Platform Code Injection / SQL Injection / Missing Authorization

LiquidFiles 3.4.15 Cross Site Scripting

PHPIPAM 1.4.4 Cross Site Request Forgery / Cross Site Scripting

Jupiter / JupiterX Theme Privilege Escalation / LFI / DoS / Access Control Issues

Emby Media Server 4.7.0.60 Cross Site Scripting

Trojan-Ransom.Thanos MVID-2022-0607 Code Execution

SDT-CW3B1 1.1.0 Command Injection

Online Discussion Forum Site 1.0 SQL Injection

Showdoc 2.10.3 Cross Site Scripting

OpenCart So Listing Tabs 2.2.0 Unsafe Deserialization

T-Soft E-Commerce 4 SQL Injection

T-Soft E-Commerce 4 Cross Site Scripting

WordPress Tatsu Builder Remote Code Execution

Survey Sparrow Enterprise Survey Software 2022 Cross Site Scripting

SolarView Compact 6.0 Command Injection

Zyxel Firewall ZTP Unauthenticated Command Injection

Chrome 100 extensions::ExtensionApiFrameIdMap::GetFrameId Heap Use-After-Free

IpMatcher 1.0.4.1 Server-Side Request Forgery

Ransom.Conti MVID-2022-0606 Code Execution

Zyxel Remote Command Execution

Ransom.Conti MVID-2022-0605 Code Execution

WordPress WP Event Manager 3.1.27 Cross Site Scripting

Ransom.Conti MVID-2022-0604 Code Execution

HighCMS/HighPortal 12.x SQL Injection

Ransom.Conti MVID-2022-0603 Code Execution

Ransom.Conti MVID-2022-0602 Code Execution