Blog RSSExploits RSSFacebook

WEB

Date D   Description Plat. Author
2017-09-19   Digirez 3.4 - Cross-Site Request Forgery (Update Admin) 37 WEB Ihsan Sencan
2017-09-18   D-Link DIR8xx Routers - Local Firmware Upload 54 WEB embedi
2017-09-18   D-Link DIR8xx Routers - Root Remote Code Execution 44 WEB embedi
2017-09-18   D-Link DIR8xx Routers - Leak Credentials 58 WEB embedi
2017-09-11   Nimble Professional 1.0 - Cross-Site Request Forgery (Update Admin) 41 WEB Ihsan Sencan
2017-09-11   Topsites Script 1.0 - Cross-Site Request Forgery / PHP Code Injection 39 WEB Ihsan Sencan
2017-08-31   Invoice Manager 3.1 - Cross-Site Request Forgery (Add Admin) 67 WEB Ali BawazeEer
2017-08-24   Automated Logic WebCTRL 6.5 - Unrestricted File Upload / Remote Code Execution 73 WEB LiquidWorm
2017-08-11   DALIM SOFTWARE ES Core 5.0 Build 7184.1 User Enumeration 34 WEB LiquidWorm
2017-08-09   Synology Photo Station 6.7.3-3432 / 6.3-2967 - Remote Code Execution 32 WEB Kacper Szurek
2017-08-02   Advantech SUSIAccess <= 3.0 - 'RecoveryMgmt' File Upload 30 WEB James Fitts
2017-08-02   Advantech SUSIAccess <= 3.0 - Directory Traversal / Information Disclosure (Metasploit) 20 WEB James Fitts
2017-07-31   GitHub Enterprise < 2.8.7 - Remote Code Execution 50 WEB orange
2017-07-27   WebKit JSC - 'JSObject::putInlineSlow and JSValue::putToPrimitive' Universal Cross-Site Scripting 26 WEB Google Security Research
2017-07-25   ManageEngine Desktop Central 10 Build 100087 - Remote Code Execution (Metasploit) 40 WEB Kacper Szurek
2017-07-21   Netscaler SD-WAN 9.1.2.26.561201 - Command Injection (Metasploit) 41 WEB xort
2017-07-21   Sonicwall < 8.1.0.2-14sv - 'sitecustomization.cgi' Command Injection (Metasploit) 31 WEB xort
2017-07-21   Sonicwall < 8.1.0.6-21sv - 'gencsr.cgi' Command Injection (Metasploit) 24 WEB xort
2017-07-19   Easy File Sharing Web Server 7.2 Buffer Overflow 35 WEB N_A
2017-07-18   Barracuda Load Balancer Firmware <= 6.0.1.006 - Remote Command Injection (Metasploit) 30 WEB xort
2017-07-18   Sophos Web Appliance 4.3.0.2 - 'trafficType' Remote Command Injection (Metasploit) 25 WEB xort
2017-07-17   WDTV Live SMP 2.03.20 - Remote Password Reset 34 WEB Sw1tCh
2017-07-17   Apache Struts 2.3.x Showcase - Remote Code Execution (PoC) 73 WEB Vex Woo
2017-07-13   RaidenHTTPD 2.0.44 User-Agent Cross Site Scripting 23 WEB sultan albalawi
2017-07-12   NfSen < 1.3.7 / AlienVault OSSIM 4.3.1 - 'customfmt' Command Injection 37 WEB Paul Taylor