| 2024-09-19 |
Microsoft Windows TOCTOU Local Privilege Escalation |
jheysel-r7 |
|
| 2024-09-19 |
OVAS - PHP (by: oretnom23 ) v1.0 Multiple-SQLi |
nu11secur1ty |
|
| 2024-09-19 |
Microsoft SQL Server Masked Data Exposure |
Emad Al-Mousa |
|
| 2024-09-19 |
Cab Management System-1.0 Multiple-SQLi |
nu11secur1ty |
|
| 2024-09-19 |
Backdoor.Win32.CCInvader.10 / Authentication Bypass |
malvuln |
|
| 2024-09-19 |
Backdoor.Win32.BlackAngel.13 / Unauthenticated Remote Command Execution |
malvuln |
|
| 2024-09-19 |
Backdoor.Win32.Delf.yj / Information Disclosure |
malvuln |
|
| 2024-09-17 |
MPlayer Lite r33064 Buffer Overflow |
h1ch4m |
|
| 2024-09-17 |
SPIP BigUp 4.3.1 / 4.2.15 / 4.1.17 Unauthenticated Remote Code Execution |
Valentin Lobstein |
|
| 2024-09-17 |
SFTRS - PHP (by: oretnom23 ) v1.0 Multiple-SQLi |
nu11secur1ty |
|
| 2024-09-13 |
TENANT-LIMITED-1.0-©-2024-Tenant-Management-System-Software Multiple-SQLi |
nu11secur1ty |
|
| 2024-09-11 |
C-MOR Video Surveillance 5.2401 Path Traversal |
Matthias Deeg |
|
| 2024-09-11 |
C-MOR Video Surveillance 5.2401 / 6.00PL01 SQL Injection |
Matthias Deeg |
|
| 2024-09-11 |
SerComm Network Device Backdoor Detection |
Eloi Vanderbeken |
|
| 2024-09-09 |
Backdoor.Win32.PoisonIvy.ymw / Insecure Credential Storage |
malvuln |
|
| 2024-09-09 |
Backdoor.Win32.JustJoke.21 (BackDoor Pro) / Unauthenticated Remote Command Execution |
malvuln |
|
| 2024-09-09 |
Backdoor.Win32.Optix.02.b / Weak Hardcoded Credentials |
malvuln |
|
| 2024-09-09 |
HackTool.Win32.Freezer.br (WinSpy) / Insecure Credential Storage |
malvuln |
|
| 2024-09-09 |
FortiSiem 7.1.3 Stored XSS |
Ersin Sarisoy |
|
| 2024-09-09 |
Backdoor.Win32.Symmi.qua / Remote Stack Buffer Overflow (SEH) |
malvuln |
|
| 2024-09-09 |
OKI Printer Default Login Credential Scanner |
antr6X |
|
| 2024-09-09 |
Texas Instruments Fusion Digital Power Designer 7.10.1 Credential Disclosure |
Gionathan Armando Reale |
|
| 2024-09-09 |
Multiple DVR Manufacturers Configuration Disclosure |
Alejandro Ramos |
|
| 2024-09-04 |
VICIdial Multiple Authenticated SQL Injection |
h00die |
|
| 2024-09-04 |
TVT NVMS-1000 Directory Traversal |
Dhiraj Mishra |
|
| 2024-09-04 |
IntelliNet 2.0 Remote Root |
Jean Pereira |
|
| 2024-09-04 |
Vivavis HIGH-LEIT 4 / 5 Privilege Escalation |
Lukas Krieg |
|
| 2024-09-04 |
Microsoft Exchange Privilege Escalation |
_dirkjan |
|
| 2024-09-03 |
Apache Karaf Default Credentials Command Execution |
Nicholas Starke |
|
| 2024-09-02 |
Cisco ASA Directory Traversal |
Shelby Pace |
|
| 2024-09-02 |
D-Link User-Agent Backdoor Scanner |
Craig Heffner |
|
| 2024-09-02 |
A10 Networks AX Loadbalancer Directory Traversal |
xistence |
|
| 2024-09-02 |
WordPress NextGEN Gallery Directory Read |
Roberto S. Soares |
|
| 2024-09-02 |
SAP BusinessObjects Web User Bruteforcer |
Jay Turla |
|
| 2024-08-28 |
Puma Peru - Reflected Cross-Site Scripting (XSS) |
kerem24 |
|
| 2024-08-28 |
WBCE CMS v1.6.2 Remote Code Execution (RCE) |
Ahmet Ümit BAYRAM |
|
| 2024-08-28 |
Backdrop CMS 1.27.1 Authenticated Remote Command Execution (RCE) |
Ahmet Ümit BAYRAM |
|
| 2024-08-28 |
Helpdeskz 2.0.2 Cross Site Scripting |
Md. Sadikul Islam |
|
| 2024-08-27 |
OX App Suite Frontend 7.10.6-rev44 Cross Site Scripting |
Martin Heiland |
|
| 2024-08-27 |
NDTaskmatic-1.0-2024-by Mayuri.K Multiple-SQLi |
nu11secur1ty |
|
| 2024-08-27 |
Invesalius 3.1 Remote Code Execution |
Riccardo Degli Esposti |
|
| 2024-08-27 |
HughesNet HT2000W Satellite Modem Password Reset |
Simon Greenblatt |
|
| 2024-08-27 |
Calibre Web 0.6.21 Cross Site Scripting |
Catalin Iovita |
|
| 2024-08-27 |
Aruba 501 CN12G5W0XX Remote Command Execution |
Hosein Vita |
|
| 2024-08-22 |
SourceCodester Computer Laboratory Management System 1.0 (manage_item.php) - SQL Injection |
0xm3m |
|
| 2024-08-22 |
used_car_showroom-1.0-2024 Multiple-SQLi |
nu11secur1ty |
|
| 2024-08-19 |
SeTracker2 Excessive Permissions |
Jasper Nota |
|
| 2024-08-19 |
Journyx 11.5.4 XML Injection |
Jaggar Henry |
|
| 2024-08-19 |
OpenMetadata 1.2.3 Authentication Bypass / SpEL Injection |
Alvaro Munoz |
|
| 2024-08-19 |
Build Your Own Botnet 2.0.0 Remote Code Execution |
chebuya |
|
| 2024-08-15 |
WordPress Profilepro 1.3 Cross Site Scripting |
Vuln Seeker Cybersecurity Team |
|
| 2024-08-15 |
Microsoft PlayReady Design Issue |
Adam Gowdiak |
|
| 2024-08-15 |
WordPress MapFig Studio 0.2.1 Cross Site Request Forgery / Cross Site Scripting |
Vuln Seeker Cybersecurity Team |
|
| 2024-08-13 |
Open WebUI 0.1.105 File Upload / Path Traversal |
Jaggar Henry |
|
| 2024-08-13 |
courier-management-system-2020-1.0 Multiple-SQLi |
nu11secur1ty |
|
| 2024-08-13 |
Backdoor.Win32.Nightmare.25 / Unauthenticated Remote Command Execution |
malvuln |
|
| 2024-08-08 |
Dolphin 7.4.2 Blind SQL Injection |
Andrey Stoykov |
|
| 2024-08-08 |
OpenMediaVault rpc.php Authenticated Cron Remote Code Execution |
Brandon Perry |
|
| 2024-08-08 |
WP-UserOnline 2.88.0 Stored Cross Site Scripting (XSS) (Authenticated) |
Onur Göğebakan |
|
| 2024-08-08 |
WordPress PayPlus Payment Gateway SQL Injection |
j3r1ch0123 |
|
| 2024-08-07 |
Genexus Protection Server 9.7.2.10 Unquoted Service Path |
SamAlucard |
|
| 2024-08-07 |
Linux DRM drm_file_update_pid() Race Condition / Use-After-Free |
Jann Horn |
|
| 2024-08-07 |
Ivanti ADC 9.9 Authentication Bypass |
ohnoisploited |
|
| 2024-08-07 |
Korenix JetPort Series 1.2 Command Injection / Insufficient Authentication |
S. Dietz |
|
| 2024-08-07 |
eduAuthorities-1.0 Multiple-SQLi |
nu11secur1ty |
|
| 2024-08-05 |
Devika v1 Path Traversal via snapshot_path |
Alperen Ergel |
|
| 2024-08-05 |
Tourism Management System v2.0 - Cross Site Scripting (XSS) |
Sampath kumar kadajari |
|
| 2024-08-05 |
Computer Laboratory Management System v1.0 - Incorrect access control |
Sampath kumar kadajari |
|
| 2024-08-04 |
ReadyMade Unilevel Ecommerce MLM Blind SQL Injection / Cross Site Scripting |
OoN_Boy |
|
| 2024-08-04 |
SourceCodester Computer Laboratory Management System 1.0 (Master.php) - SQL Injection |
Kavia Baskar |
|
| 2024-08-04 |
SourceCodester Computer Laboratory Management System 1.0 (view_category.php) - SQL Injection |
Kavia Baskar |
|
| 2024-08-04 |
SolarWinds Kiwi Syslog Server 9.6.7.1 - Unquoted Service Path |
Milad Karimi |
|
| 2024-08-04 |
Leads Manager Tool SQL Injection / Cross Site Scripting |
OoN_Boy |
|
| 2024-07-31 |
Alecto IVM-100 2019-11-12 Missing Authentication |
Willem Westerhof |
|
| 2024-07-31 |
Sannce Smart HD Wifi Security Camera EAN 2 950004 595317 Denial Of Service |
Willem Westerhof |
|
| 2024-07-31 |
One2Track 2019-12-08 Missing PIN |
Jasper Nota |
|
| 2024-07-31 |
Epson Expression Home XP255 20.08.FM10I8 Missing Authentication |
Konrad Leszczynski |
|
| 2024-07-31 |
Brother MFC-J491DW C1806180757 Password Hash Disclosure |
Konrad Leszcynski |
|
| 2024-07-31 |
Brother MFC-J491DW C1806180757 Password Hash Disclosure |
Konrad Leszcynski |
|
| 2024-07-27 |
Prison Management System 1.0 Shell Upload |
Muhammet Ali Dak |
|
| 2024-07-24 |
SRDB Wordpres Replace Title |
Demon King |
|
| 2024-07-24 |
Perten Instruments Process Plus Software 1.11.6507.0 LFI / Hardcoded Credentials |
T. Weber |
|
| 2024-07-24 |
Designed by Winzone Softech" Bypass Admin With Noredirect |
Xplo5ionS |
|
| 2024-07-23 |
Softing Secure Integration Server 1.22 Remote Code Execution |
mr_me |
|
| 2024-07-23 |
Technocracy Softwares Pvt. Ltd Bypass Admin With Noredirect |
Xplo5ionS |
|
| 2024-07-23 |
Ghostscript Command Execution / Format String |
Thomas Rinsma |
|
| 2024-07-23 |
Adobe Commerce / Magento Open Source XML Injection / User Impersonation |
RedWay Security |
|
| 2024-07-18 |
Bonjour Service mDNSResponder.exe Unquoted Service Path Privilege Escalation |
bios |
|
| 2024-07-18 |
XenForo 2.2.15 Cross Site Request Forgery |
EgiX |
|
| 2024-07-18 |
Xenforo 2.2.15 Remote Code Execution |
EgiX |
|
| 2024-07-18 |
Hospital Management System Project In ASP.Net MVC 1 SQL Injection |
0xMykull |
|
| 2024-07-17 |
Apache mod_proxy_cluster Stored XSS |
Anonymous |
|
| 2024-07-17 |
iMLog < 1.307 Persistent Cross Site Scripting (XSS) |
Gabriel Felipe |
|
| 2024-07-16 |
lajeh - SQL Injection vulnerability |
Mahdi Karimi |
|
| 2024-07-13 |
lajeh - SQL Injection vulnerability |
Mahdi Karimi |
|
| 2024-07-12 |
LumisXP 16.1.x Cross Site Scripting |
Rodolfo Tavares |
|
| 2024-07-12 |
Atlassian Confluence Administrator Code Macro Remote Code Execution |
W01fh4cker |
|
| 2024-07-12 |
WordPress Poll Maker 5.3.2 SQL Injection |
tmrswrr |
|
| 2024-07-12 |
ESET NOD32 Antivirus 17.2.7.0 Unquoted Service Path |
Milad Karimi |
|
| 2024-07-11 |
WordPress Photo Gallery 1.8.26 Cross Site Scripting |
tmrswrr |
|
