Blog

[webapps] Time and Expense Management System 3.0 – Cross-Site Request Forgery (Add Admin)

Time and Expense Management System 3.0 – Cross-Site Request Forgery (Add Admin)


October 17, 2018 0

[local] Any Sound Recorder 2.93 – Buffer Overflow (SEH)

Any Sound Recorder 2.93 – Buffer Overflow (SEH)


October 17, 2018 0

[remote] FLIR AX8 Thermal Camera 1.32.16 – Hard-Coded Credentials

FLIR AX8 Thermal Camera 1.32.16 – Hard-Coded Credentials


October 17, 2018 0

[webapps] BigTree CMS 4.2.23 – Cross-Site Scripting

BigTree CMS 4.2.23 – Cross-Site Scripting


October 17, 2018 0

[local] VLC Media Player – MKV Use-After-Free (Metasploit)

VLC Media Player – MKV Use-After-Free (Metasploit)


October 16, 2018 0

[dos] Microsoft Windows – ‘FSCTL_FIND_FILES_BY_SID’ Information Disclosure

Microsoft Windows – ‘FSCTL_FIND_FILES_BY_SID’ Information Disclosure


October 16, 2018 0

[local] Solaris – RSH Stack Clash Privilege Escalation (Metasploit)

Solaris – RSH Stack Clash Privilege Escalation (Metasploit)


October 16, 2018 0

[webapps] Heatmiser Wifi Thermostat 1.7 – Credential Disclosure

Heatmiser Wifi Thermostat 1.7 – Credential Disclosure


October 16, 2018 0

[webapps] GIU Gallery Image Upload 0.3.1 – ‘category’ SQL Injection

GIU Gallery Image Upload 0.3.1 – ‘category’ SQL Injection


October 16, 2018 0

[webapps] MV Video Sharing Software 1.2 – ‘searchname’ SQL Injection

MV Video Sharing Software 1.2 – ‘searchname’ SQL Injection


October 16, 2018 0