Blog RSSExploits RSSFacebook

WEB

Date D   Description Plat. Author
2018-05-08   PlaySMS import.php Code Execution 36 WEB Touhid M.Shaikh
2018-05-08   PlaySMS sendfromfile.php Code Execution 31 WEB DarkS3curity
2018-05-07   WordPress Plugin User Role Editor < 4.25 - Privilege Escalation 45 WEB Tomislav Paskalev
2018-05-07   Apache Struts2 2.0.0 < 2.3.15 - Prefixed Parameters OGNL Injection 54 WEB Takeshi Terada
2018-05-03   Nagios XI 5.2.6 < 5.2.9 / 5.3 / 5.4 - Chained Remote Root 41 WEB Jared Arave
2018-05-03   Drupal < 7.58 - 'Drupalgeddon3' Authenticated Remote Code 45 WEB SixP4ck3r
2018-05-03   osCommerce Installer Unauthenticated Code Execution 25 WEB Daniel Teixeira
2018-04-27   GitList 0.6 - Unauthenticated Remote Code Execution 27 WEB Kacper Szurek
2018-04-27   SickRage < v2018.03.09 - Clear-Text Credentials HTTP Response 21 WEB Sven Fassbender
2018-04-25   Ericsson-LG iPECS NMS A.1Ac - Cleartext Credential Disclosure 20 WEB Berk Cem Göksel
2018-04-25   Interspire Email Marketer < 6.1.6 - Remote Admin Authentication Bypass 25 WEB devcoinfet
2018-04-24   Apache CouchDB 1.7.0 and 2.x before 2.1.1 - Remote Privilege Escalation 24 WEB Sebastián Castro
2018-04-19   Lutron Quantum 2.0 - 3.2.243 - Information Disclosure 23 WEB SadFud
2018-04-16   MikroTik 6.41.4 - FTP daemon Denial of Service PoC 28 WEB FarazPajohan
2018-04-16   Drupal < 7.58 / < 8.3.9 / < 8.4.6 / < 8.5.1 - 'Drupalgeddon2' Remote Code Execution 55 WEB Hans Topo
2018-04-16   Drupal < 7.58 / < 8.3.9 / < 8.4.6 / < 8.5.1 - 'Drupalgeddon2' Remote Code Execution (PoC) 56 WEB Vitalii Rudnykh
2018-04-10   CyberArk Password Vault Web Access < 9.9.5 / < 9.10 / 10.1 - Remote Code Execution 29 WEB RedTeam Pentesting
2018-04-04   ProcessMaker Plugin Code Execution 40 WEB Brendan Coles
2018-04-04   DuckDuckGo 4.2.0 WebRTC Private IP Leakage 40 WEB Brendan Coles
2018-04-02   Vtiger CRM 6.3.0 - Authenticated Arbitrary File Upload (Metasploit) 46 WEB Touhid M.Shaikh
2018-04-02   osCommerce 2.3.4.1 - Remote Code Execution 42 WEB Simon Scannell
2018-04-02   Homematic CCU2 2.29.23 - Remote Command Execution 42 WEB Gregor Kopf
2018-04-02   Homematic CCU2 2.29.23 - Arbitrary File Write 58 WEB Gregor Kopf
2018-03-30   Joomla Component Fields - SQLi Remote Code Execution (Metasploit) 54 WEB luisco100
2018-03-30   Drupal 7.0 < 7.31 - 'Drupalgeddon' SQL Injection (Admin Session) 43 WEB Stefan Horst