2021-04-23 |
sipwise c5 ngcp csc - click2dial cross-site request forgery (csrf)
|
webapps exploit |
hardware vulnerability |
2021-04-23 |
sipwise c5 ngcp csc - 'multiple' stored/reflected cross-site scripting (xss)
|
webapps exploit |
hardware vulnerability |
2021-04-23 |
dzzoffice 2.02.1 - 'multiple' cross-site scripting (xss)
|
webapps exploit |
multiple vulnerability |
2021-04-23 |
getsimple cms my smtp contact plugin 1.1.2 - csrf to stored xss to rce
|
webapps exploit |
php vulnerability |
2021-04-23 |
moodle 3.10.3 - 'url' persistent cross site scripting
|
webapps exploit |
php vulnerability |
2021-04-22 |
remoteclinic 2.0 - 'multiple' stored cross-site scripting (xss)
|
webapps exploit |
php vulnerability |
2021-04-22 |
otrs 6.0.1 - remote command execution (2)
|
webapps exploit |
perl vulnerability |
2021-04-22 |
cms made simple 2.2.15 - 'title' cross-site scripting (xss)
|
webapps exploit |
php vulnerability |
2021-04-22 |
http host header attacks - paper
|
papers exploit |
multiple vulnerability |
2021-04-21 |
hasura graphql 1.3.3 - service side request forgery (ssrf)
|
webapps exploit |
multiple vulnerability |
2021-04-21 |
hasura graphql 1.3.3 - local file read
|
webapps exploit |
multiple vulnerability |
2021-04-21 |
hasura graphql 1.3.3 - denial of service
|
dos exploit |
multiple vulnerability |
2021-04-21 |
gravcms 1.10.7 - unauthenticated arbitrary yaml write/update (metasploit)
|
webapps exploit |
php vulnerability |
2021-04-21 |
adtran personal phone manager 10.8.1 - dns exfiltration
|
webapps exploit |
hardware vulnerability |
2021-04-21 |
adtran personal phone manager 10.8.1 - 'multiple' reflected cross-site scripting (xss)
|
webapps exploit |
hardware vulnerability |
2021-04-21 |
adtran personal phone manager 10.8.1 - 'emailaddress' stored cross-site scripting (xss)
|
webapps exploit |
hardware vulnerability |
2021-04-21 |
openemr 5.0.2.1 - remote code execution
|
webapps exploit |
php vulnerability |
2021-04-21 |
rconfig 3.9.6 - arbitrary file upload to remote code execution (authenticated) (2)
|
webapps exploit |
php vulnerability |
2021-04-21 |
tenda d151 & d301 - configuration download (unauthenticated)
|
remote exploit |
hardware vulnerability |
2021-04-21 |
remoteclinic 2 - 'multiple' cross-site scripting (xss)
|
webapps exploit |
php vulnerability |
2021-04-21 |
discourse 2.7.0 - rate limit bypass leads to 2fa bypass
|
webapps exploit |
multiple vulnerability |
2021-04-21 |
blackcat cms 1.3.6 - 'multiple' stored cross-site scripting (xss)
|
webapps exploit |
php vulnerability |
2021-04-21 |
wordpress plugin rss for yandex turbo 1.29 - stored cross-site scripting (xss)
|
webapps exploit |
php vulnerability |
2021-04-21 |
fast php chat 1.3 - 'my_item_search' sql injection
|
webapps exploit |
php vulnerability |
2021-04-21 |
wordpress plugin analysis - paper
|
papers exploit |
multiple vulnerability |
2021-04-21 |
multilaser router re018 ac1200 - cross-site request forgery (enable remote access)
|
webapps exploit |
hardware vulnerability |
2021-04-16 |
getsimple cms my smtp contact plugin 1.1.1 - csrf to rce
|
webapps exploit |
php vulnerability |
2021-04-15 |
glftpd 2.11a - remote denial of service
|
dos exploit |
multiple vulnerability |
2021-04-15 |
htmly 2.8.0 - 'description' stored cross-site scripting (xss)
|
webapps exploit |
multiple vulnerability |
2021-04-15 |
tileserver-gl 3.0.0 - 'key' reflected cross-site scripting (xss)
|
webapps exploit |
multiple vulnerability |
2021-04-15 |
linux/x64 - execve(/bin/sh) shellcode (21 bytes) (2)
|
shellcode exploit |
linux_x86-64 vulnerability |
2021-04-15 |
horde groupware webmail 5.2.22 - stored xss
|
webapps exploit |
multiple vulnerability |
2021-04-15 |
linux/x86 - execve(/bin/sh) shellcode (17 bytes)
|
shellcode exploit |
linux_x86 vulnerability |
2021-04-14 |
jquery 1.0.3 - cross-site scripting (xss)
|
webapps exploit |
multiple vulnerability |
2021-04-14 |
jquery 1.2 - cross-site scripting (xss)
|
webapps exploit |
multiple vulnerability |
2021-04-14 |
mariadb 10.2 /mysql - 'wsrep_provider' os command execution
|
local exploit |
linux vulnerability |
2021-04-14 |
genexis platinum 4410 2.1 p4410-v2-1.28 - rce
|
webapps exploit |
hardware vulnerability |
2021-04-14 |
citsmart itsm 9.1.2.27 - 'query' time-based blind sql injection (authenticated)
|
webapps exploit |
java vulnerability |
2021-04-14 |
citsmart itsm 9.1.2.22 - ldap injection
|
webapps exploit |
java vulnerability |
2021-04-14 |
digital crime report management system 1.0 - sql injection (authentication bypass)
|
webapps exploit |
php vulnerability |
2021-04-13 |
expressvpn vpn router 1.0 - router login panel's integer overflow
|
webapps exploit |
multiple vulnerability |
2021-04-13 |
blitar tourism 1.0 - authentication bypass sqli
|
webapps exploit |
multiple vulnerability |
2021-04-13 |
simple student information system 1.0 - sql injection (authentication bypass)
|
webapps exploit |
php vulnerability |
2021-04-12 |
vsftpd 2.3.4 - backdoor command execution
|
remote exploit |
unix vulnerability |
2021-04-09 |
prestashop 1.7.6.7 - 'location' blind sql injection
|
webapps exploit |
php vulnerability |
2021-04-08 |
linux kernel 5.4 - 'bleedingtooth' bluetooth zero-click remote code execution
|
remote exploit |
linux vulnerability |
2021-04-08 |
composr 10.0.36 - remote code execution
|
webapps exploit |
php vulnerability |
2021-04-08 |
dma radius manager 4.4.0 - cross-site request forgery (csrf)
|
webapps exploit |
multiple vulnerability |
2021-04-08 |
cmsimple 5.2 - 'external' stored xss
|
webapps exploit |
php vulnerability |
2021-04-07 |
dell openmanage server administrator 9.4.0.0 - arbitrary file read
|
webapps exploit |
windows vulnerability |