Blog RSSExploits RSSFacebook

WEB

Date D   Description Plat. Author
2018-05-18   Intelbras NCLOUD 300 1.0 - Authentication bypass 32 WEB Pedro Aguiar
2018-05-10   Mantis manage_proj_page PHP Code Execution 39 WEB Lars Sorenson
2018-05-08   Palo Alto Networks readSessionVarsFromFile() Session Corruption 32 WEB hdm
2018-05-08   PlaySMS import.php Code Execution 38 WEB Touhid M.Shaikh
2018-05-08   PlaySMS sendfromfile.php Code Execution 34 WEB DarkS3curity
2018-05-07   WordPress Plugin User Role Editor < 4.25 - Privilege Escalation 56 WEB Tomislav Paskalev
2018-05-07   Apache Struts2 2.0.0 < 2.3.15 - Prefixed Parameters OGNL Injection 58 WEB Takeshi Terada
2018-05-03   Nagios XI 5.2.6 < 5.2.9 / 5.3 / 5.4 - Chained Remote Root 44 WEB Jared Arave
2018-05-03   Drupal < 7.58 - 'Drupalgeddon3' Authenticated Remote Code 50 WEB SixP4ck3r
2018-05-03   osCommerce Installer Unauthenticated Code Execution 27 WEB Daniel Teixeira
2018-04-27   GitList 0.6 - Unauthenticated Remote Code Execution 29 WEB Kacper Szurek
2018-04-27   SickRage < v2018.03.09 - Clear-Text Credentials HTTP Response 22 WEB Sven Fassbender
2018-04-25   Ericsson-LG iPECS NMS A.1Ac - Cleartext Credential Disclosure 22 WEB Berk Cem Göksel
2018-04-25   Interspire Email Marketer < 6.1.6 - Remote Admin Authentication Bypass 29 WEB devcoinfet
2018-04-24   Apache CouchDB 1.7.0 and 2.x before 2.1.1 - Remote Privilege Escalation 28 WEB Sebastián Castro
2018-04-19   Lutron Quantum 2.0 - 3.2.243 - Information Disclosure 25 WEB SadFud
2018-04-16   MikroTik 6.41.4 - FTP daemon Denial of Service PoC 30 WEB FarazPajohan
2018-04-16   Drupal < 7.58 / < 8.3.9 / < 8.4.6 / < 8.5.1 - 'Drupalgeddon2' Remote Code Execution 60 WEB Hans Topo
2018-04-16   Drupal < 7.58 / < 8.3.9 / < 8.4.6 / < 8.5.1 - 'Drupalgeddon2' Remote Code Execution (PoC) 58 WEB Vitalii Rudnykh
2018-04-10   CyberArk Password Vault Web Access < 9.9.5 / < 9.10 / 10.1 - Remote Code Execution 31 WEB RedTeam Pentesting
2018-04-04   ProcessMaker Plugin Code Execution 44 WEB Brendan Coles
2018-04-04   DuckDuckGo 4.2.0 WebRTC Private IP Leakage 40 WEB Brendan Coles
2018-04-02   Vtiger CRM 6.3.0 - Authenticated Arbitrary File Upload (Metasploit) 46 WEB Touhid M.Shaikh
2018-04-02   osCommerce 2.3.4.1 - Remote Code Execution 45 WEB Simon Scannell
2018-04-02   Homematic CCU2 2.29.23 - Remote Command Execution 43 WEB Gregor Kopf