2018-05-18
|
|
Intelbras NCLOUD 300 1.0 - Authentication bypass
|
30 |
WEB
|
Pedro Aguiar
|
2018-05-10
|
|
Mantis manage_proj_page PHP Code Execution
|
38 |
WEB
|
Lars Sorenson
|
2018-05-08
|
|
Palo Alto Networks readSessionVarsFromFile() Session Corruption
|
30 |
WEB
|
hdm
|
2018-05-08
|
|
PlaySMS import.php Code Execution
|
37 |
WEB
|
Touhid M.Shaikh
|
2018-05-08
|
|
PlaySMS sendfromfile.php Code Execution
|
31 |
WEB
|
DarkS3curity
|
2018-05-07
|
|
WordPress Plugin User Role Editor < 4.25 - Privilege Escalation
|
48 |
WEB
|
Tomislav Paskalev
|
2018-05-07
|
|
Apache Struts2 2.0.0 < 2.3.15 - Prefixed Parameters OGNL Injection
|
57 |
WEB
|
Takeshi Terada
|
2018-05-03
|
|
Nagios XI 5.2.6 < 5.2.9 / 5.3 / 5.4 - Chained Remote Root
|
43 |
WEB
|
Jared Arave
|
2018-05-03
|
|
Drupal < 7.58 - 'Drupalgeddon3' Authenticated Remote Code
|
46 |
WEB
|
SixP4ck3r
|
2018-05-03
|
|
osCommerce Installer Unauthenticated Code Execution
|
26 |
WEB
|
Daniel Teixeira
|
2018-04-27
|
|
GitList 0.6 - Unauthenticated Remote Code Execution
|
28 |
WEB
|
Kacper Szurek
|
2018-04-27
|
|
SickRage < v2018.03.09 - Clear-Text Credentials HTTP Response
|
21 |
WEB
|
Sven Fassbender
|
2018-04-25
|
|
Ericsson-LG iPECS NMS A.1Ac - Cleartext Credential Disclosure
|
21 |
WEB
|
Berk Cem Göksel
|
2018-04-25
|
|
Interspire Email Marketer < 6.1.6 - Remote Admin Authentication Bypass
|
26 |
WEB
|
devcoinfet
|
2018-04-24
|
|
Apache CouchDB 1.7.0 and 2.x before 2.1.1 - Remote Privilege Escalation
|
26 |
WEB
|
Sebastián Castro
|
2018-04-19
|
|
Lutron Quantum 2.0 - 3.2.243 - Information Disclosure
|
25 |
WEB
|
SadFud
|
2018-04-16
|
|
MikroTik 6.41.4 - FTP daemon Denial of Service PoC
|
29 |
WEB
|
FarazPajohan
|
2018-04-16
|
|
Drupal < 7.58 / < 8.3.9 / < 8.4.6 / < 8.5.1 - 'Drupalgeddon2' Remote Code Execution
|
58 |
WEB
|
Hans Topo
|
2018-04-16
|
|
Drupal < 7.58 / < 8.3.9 / < 8.4.6 / < 8.5.1 - 'Drupalgeddon2' Remote Code Execution (PoC)
|
56 |
WEB
|
Vitalii Rudnykh
|
2018-04-10
|
|
CyberArk Password Vault Web Access < 9.9.5 / < 9.10 / 10.1 - Remote Code Execution
|
29 |
WEB
|
RedTeam Pentesting
|
2018-04-04
|
|
ProcessMaker Plugin Code Execution
|
42 |
WEB
|
Brendan Coles
|
2018-04-04
|
|
DuckDuckGo 4.2.0 WebRTC Private IP Leakage
|
40 |
WEB
|
Brendan Coles
|
2018-04-02
|
|
Vtiger CRM 6.3.0 - Authenticated Arbitrary File Upload (Metasploit)
|
46 |
WEB
|
Touhid M.Shaikh
|
2018-04-02
|
|
osCommerce 2.3.4.1 - Remote Code Execution
|
44 |
WEB
|
Simon Scannell
|
2018-04-02
|
|
Homematic CCU2 2.29.23 - Remote Command Execution
|
42 |
WEB
|
Gregor Kopf
|