Blog

[webapps] xuucms 3 – ‘keywords’ SQL Injection

xuucms 3 – ‘keywords’ SQL Injection


November 19, 2020 0

[webapps] Fortinet FortiOS 6.0.4 – Unauthenticated SSL VPN User Password Modification

Fortinet FortiOS 6.0.4 – Unauthenticated SSL VPN User Password Modification


November 19, 2020 0

[remote] ZeroLogon – Netlogon Elevation of Privilege

ZeroLogon – Netlogon Elevation of Privilege


November 18, 2020 0

[webapps] WordPress Plugin WPForms 1.6.3.1 – Persistent Cross Site Scripting (Authenticated)

Wordpress Plugin WPForms 1.6.3.1 – Persistent Cross Site Scripting (Authenticated)


November 18, 2020 0

[webapps] BigBlueButton 2.2.25 – Arbitrary File Disclosure and Server-Side Request Forgery

BigBlueButton 2.2.25 – Arbitrary File Disclosure and Server-Side Request Forgery


November 18, 2020 0

[remote] Apache Struts 2.5.20 – Double OGNL evaluation

Apache Struts 2.5.20 – Double OGNL evaluation


November 17, 2020 0

[local] LCD_Service 1.0.1.0 – ‘LCD_Service’ Unquote Service Path

LCD_Service 1.0.1.0 – ‘LCD_Service’ Unquote Service Path


November 17, 2020 0

[remote] Aerospike Database 5.1.0.3 – OS Command Execution

Aerospike Database 5.1.0.3 – OS Command Execution


November 17, 2020 0

[webapps] EgavilanMedia User Registration & Login System with Admin Panel Exploit – SQLi Auth Bypass

EgavilanMedia User Registration & Login System with Admin Panel Exploit – SQLi Auth Bypass


November 17, 2020 0

[webapps] Online Doctor Appointment Booking System PHP and Mysql 1.0 – ‘q’ SQL Injection

Online Doctor Appointment Booking System PHP and Mysql 1.0 – ‘q’ SQL Injection


November 17, 2020 0