Blog RSSExploits RSSFacebook

WEB

Date D   Description Plat. Author
2017-11-20   phpMyFAQ 2.9.9 Code Injection 5 WEB tomplixsee
2017-11-15   Allworx Server Manager 6x / 6x12 / 48x Cross Site Scripting 14 WEB LiquidWorm
2017-11-14   Web Viewer 1.0.0.193 (Samsung SRN-1670D) - Unrestricted File Upload 7 WEB Omar Mezrag
2017-11-09   Geutebrueck GCore GCoreServer.exe Buffer Overflow 2 WEB Luca Cappiello
2017-11-09   Mako Server 2.5 Command Injection 3 WEB Steven Patterson
2017-11-06   WordPress WP Mobile Detector 3.5 Shell Upload 18 WEB h00die
2017-11-06   Oracle PeopleSoft Enterprise PeopleTools < 8.55 - Remote Code Execution Via Blind XML External Entit 2 WEB Charles Fol
2017-10-31   Oracle Java SE - Web Start jnlp XML External Entity Processing Information Disclosure 7 WEB mr_me
2017-10-26   PHPMailer 5.2.21 Local File Disclosure 19 WEB Maciej Krupa
2017-10-24   Kaltura < 13.1.0 - Remote Code Execution 15 WEB Robin Verton
2017-10-23   TP-Link WR940N Remote Code Execution 35 WEB Tim Carrington
2017-10-23   Check_MK 1.2.8p25 - Information Disclosure 9 WEB Julien Ahrens
2017-10-17   Webmin 1.850 SSRF / CSRF / Cross Site Scripting 28 WEB hyp3rlinx
2017-10-13   Tomcat JSP Upload Bypass Remote Code Execution 39 WEB peewpw
2017-10-12   Trend Micro InterScan Messaging Security (Virtual Appliance) - Remote Code Execution (Metasploit) 9 WEB Mehmet Ince
2017-10-10   ERS Data System 1.8.1 Java Deserialization 11 WEB West Shepherd
2017-10-10   Apache Tomcat < 9.0.1 (Beta) / < 8.5.23 / < 8.0.47 / < 7.0.8 - JSP Upload Bypass / Remote Code Execu 29 WEB intx0x80
2017-10-10   ClipBucket 2.8.3 - Remote Code Execution 8 WEB Meisam Monsef
2017-10-10   FileRun < 2017.09.18 - SQL Injection 17 WEB SPARC
2017-09-28   Fibaro Home Center 2 - Remote Command Execution / Privilege Escalation 10 WEB forsec
2017-09-26   FLIR Systems FLIR Thermal Camera F/FC/PT/D Multiple Information Disclosures 9 WEB LiquidWorm
2017-09-26   FLIR Systems FLIR Thermal Camera PT-Series (PT-334 200562) - Root Remote Code Execution 6 WEB LiquidWorm
2017-09-25   Cash Back Comparison Script 1.0 - SQL Injection 16 WEB Ihsan Sencan
2017-09-25   DenyAll WAF < 6.3.0 - Remote Code Execution (Metasploit) 15 WEB Mehmet Ince
2017-09-22   Stock Photo Selling 1.0 - SQL Injection 16 WEB Ihsan Sencan