| 2024-11-19 |
Microsoft Windows Defender TrojanWin32Powessere.G / Detection Mitigation Bypass |
hyp3rlinx |
|
| 2024-11-19 |
© 2024 Human Resource Management-1.0-HRM-1.0 Cross-site scripting (reflected) |
nu11secur1ty |
|
| 2024-11-19 |
Blue sun info - Blind Sql Injection Vulnerability |
behrouz mansoori |
|
| 2024-11-19 |
Pyload Remote Code Execution |
Spencer McIntyre |
|
| 2024-11-18 |
Heatmiser Wifi Thermostat 1.7 - Cross-Site Request Forgery |
parsa rezaie khiabanloo |
|
| 2024-11-18 |
Calibre-web 0.6.21 Stored XSS |
Pentest-Tools |
|
| 2024-11-18 |
SOPlanning 1.52.01 (Simple Online Planning Tool) Remote Code Execution (RCE) (Authenticated) |
Ardayfio Samuel Nii Aryee |
|
| 2024-11-18 |
Proteus Home P1B - Default Password and Broken Access Control |
parsa rezaie khiabanloo |
|
| 2024-11-18 |
EXPLOIT FINDER WordPress User Enumeration |
E1.Coders |
|
| 2024-11-18 |
Proteus Home P1B - Default Password and Broken Access Control |
parsa rezaie khiabanloo |
|
| 2024-11-18 |
OmenTec Proteus Home P1B - Default Password and Broken Access Control |
parsa rezaie khiabanloo |
|
| 2024-11-15 |
© 2024 Human Resource Management-1.0-HRM-1.0 Multiple-SQLi |
nu11secur1ty |
|
| 2024-11-15 |
TX Text Control .NET Server For ASP.NET Arbitrary File Read / Write |
Filip Palian |
|
| 2024-11-15 |
Siemens Energy Omnivise T3000 8.2 SP3 Privilege Escalation / File Download |
Andreas Kolbeck |
|
| 2024-11-13 |
TestRail CLI FieldsParser eval Injection |
Devin |
|
| 2024-11-13 |
Positive E Solutions Inc - Sql Injection |
behrouz mansoori |
|
| 2024-11-13 |
Positive E Solutions Inc - Blind Sql Injection Vulnerability |
behrouz mansoori |
|
| 2024-11-13 |
Online Complete - Sql Injection |
behrouz mansoori |
|
| 2024-11-11 |
POMS-PHP (by: oretnom23 ) v1.0, Copyright © 2024. All rights reserved - File Upload Vulnerability exploit |
nu11secur1ty |
|
| 2024-11-11 |
POMS-PHP (by: oretnom23 ) v1.0, Copyright © 2024. All rights reserved - SQLi Bypass Authentication |
nu11secur1ty |
|
| 2024-11-11 |
WebSenor InfoTech - Blind Sql Injection Vulnerability |
behrouz mansoori |
|
| 2024-11-11 |
BALC Media - Sql Injection |
behrouz mansoori |
|
| 2024-11-07 |
WebSenor InfoTech Sql Injection |
behrouz mansoori |
|
| 2024-11-07 |
Vibgyor Media Info Solutions - Blind Sql Injection Vulnerability |
behrouz mansoori |
|
| 2024-11-07 |
Vibgyor Media Info Solutions Sql Injection |
behrouz mansoori |
|
| 2024-11-07 |
IBM Security Verify Access Appliance Insecure Transit / Hardcoded Passwords |
Pierre Kim |
|
| 2024-11-07 |
ESET NOD32 Antivirus 18.0.12.0 Unquoted Service Path |
Milad Karimi |
|
| 2024-11-07 |
SQLite3 generate_series Stack Buffer Underflow |
Google Security Research |
|
| 2024-11-07 |
ABB Cylon Aspect 3.08.00 Off-By-One |
LiquidWorm |
|
| 2024-11-03 |
Qualitor 8.24 Server-Side Request Forgery |
OpenXP Research Team |
|
| 2024-11-03 |
Xlibre Xnest 24.1.0 / 24.2.0 Buffer Overflow |
Enrico Weigelt |
|
| 2024-11-03 |
SmartAgent 1.1.0 Remote Code Execution |
Alter Prime |
|
| 2024-11-03 |
SmartAgent 1.1.0 Server-Side Request Forgery |
Alter Prime |
|
| 2024-11-03 |
SmartAgent 1.1.0 SQL Injection |
Alter Prime |
|
| 2024-10-30 |
Booked Scheduler 2.8.5 Cross Site Scripting / Open Redirection |
Andrey Stoykov |
|
| 2024-10-29 |
Lawo AG vsm LTC Time Sync Path Traversal |
Sandro Einfeldt |
|
| 2024-10-29 |
UP-RESULT[pro-1.0] Multiple-SQLi |
nu11secur1ty |
|
| 2024-10-29 |
ABB Cylon Aspect 3.08.01 getApplicationNamesJS.php Building/Project Name Exposure |
LiquidWorm |
|
| 2024-10-26 |
SofaWiki 3.9.2 Cross Site Scripting |
Chokri Hammedi |
|
| 2024-10-26 |
SofaWiki 3.9.2 Shell Upload |
Chokri Hammedi |
|
| 2024-10-26 |
Impactos NET Sql Injection |
behrouz mansoori |
|
| 2024-10-26 |
Impactos NET - Blind Sql Injection Vulnerability |
behrouz mansoori |
|
| 2024-10-26 |
LifterLMS - Blind SQL Injection |
FURKAN KARAARSLAN |
|
| 2024-10-26 |
Adversary3 updated / 700 malware and C2 panel vulnerabilities |
malvuln |
|
| 2024-10-23 |
IBM Security Verify Access 10.0.8 Open Redirection |
Giulio Garzia |
|
| 2024-10-23 |
ABB Cylon Aspect 3.08.01 persistenceManagerAjax.php Command Injection |
LiquidWorm |
|
| 2024-10-23 |
ABB Cylon Aspect 3.08.01 databaseFileDelete.php Command Injection |
LiquidWorm |
|
| 2024-10-23 |
Paxton Net2 API License Bypass |
Jeroen Hermans |
|
| 2024-10-17 |
dolibarr 20.0.1 Multiple security token SQLi |
nu11secur1ty |
|
| 2024-10-17 |
BYOB Unauthenticated Remote Code Execution |
Valentin Lobstein |
|
| 2024-10-17 |
Ultra Mini HTTPd 1.21 - POST - Denial of Service (DoS) |
Fagner Lima - Aka r3ng4f |
|
| 2024-10-13 |
VICIdial 2.14-917a SQL Injection |
Jaggar Henry |
|
| 2024-10-13 |
WordPress LMS 4.2.7 SQL Injection |
Avento |
|
| 2024-10-13 |
Netman 204 4.05 SQL Injection / Unauthenticated Password Reset |
T. Weber |
|
| 2024-10-12 |
BALC Media - Blind Sql Injection Vulnerability |
behrouz mansoori |
|
| 2024-10-12 |
ABB Cylon Aspect 3.07.02 sshUpdate.php Unauthenticated Remote SSH Service Control |
LiquidWorm |
|
| 2024-10-12 |
ABB Cylon Aspect 3.08.00 dialupSwitch.php Remote Code Execution |
LiquidWorm |
|
| 2024-10-12 |
ABB Cylon Aspect 3.07.02 user.properties Default Credentials |
LiquidWorm |
|
| 2024-10-09 |
PHP-Nuke Top Module SQL Injection |
Emiliano Febbi |
|
| 2024-10-08 |
Acronis Cyber Infrastructure Default Password Remote Code Execution |
h00die-gr3y |
|
| 2024-10-08 |
Online Complete - Blind Sql Injection Vulnerability |
behrouz mansoori |
|
| 2024-10-08 |
MSI RTCore64.sys Privilege escalation |
NSA |
|
| 2024-10-08 |
SCRMS 2024-10-07 Multiple-SQLi |
nu11secur1ty |
|
| 2024-10-08 |
Book Recording App 2024-09-24 Cross Site Scripting |
Arif Ari |
|
| 2024-10-08 |
ManageEngine ADManager Plus Privilege Escalation |
Metin Yunus Kandemir |
|
| 2024-10-05 |
dizqueTV 1.5.3 Remote Code Execution |
Ahmed Said Saud Al-Busaidi |
|
| 2024-10-05 |
LMS2024-1.0 XSS-Reflected Information Disclosure |
nu11secur1ty |
|
| 2024-10-05 |
ABB Cylon Aspect 3.07.02 Authenticated File Disclosure |
LiquidWorm |
|
| 2024-10-05 |
MD-Pro 1.0.76 Shell Upload / SQL Injection |
Emiliano Febbi |
|
| 2024-10-05 |
fastrpc_mmap_find Information Leak |
Google Security Research |
|
| 2024-10-05 |
Android qrtr_bpf_filter_detach Double-Free / Use-After-Free |
Google Security Research |
|
| 2024-10-03 |
Nitro PDF Pro Local Privilege Escalation |
Sandro Einfeldt |
|
| 2024-10-03 |
SeedDMS 6.0.28 Cross Site Scripting |
Marco Nappi |
|
| 2024-10-03 |
MIDIA Unrestricted File Upload / Arbitrary File Upload |
Khunerable |
|
| 2024-10-03 |
reNgine 2.2.0 Command Injection (Authenticated) |
Caner Tercan |
|
| 2024-10-03 |
Microsoft Office NTLMv2 Disclosure |
Metin Yunus Kandemir |
|
| 2024-10-01 |
VegaBird Yaazhini 2.0.2 DLL Hijacking |
Iulian Florea |
|
| 2024-10-01 |
VegaBird Vooki 5.2.9 DLL Hijacking |
Iulian Florea |
|
| 2024-10-01 |
krishna Tech - Sql Injection |
behrouz mansoori |
|
| 2024-10-01 |
BlackBerry CylanceOPTICS Uninstall Password Bypass |
P. Espernberger |
|
| 2024-09-30 |
Backdoor.Win32.Amatu.a Remote / Arbitrary File Write (RCE) |
malvuln |
|
| 2024-09-30 |
Backdoor.Win32.Prorat.jz / Remote Stack Buffer Overflow (SEH) |
malvuln |
|
| 2024-09-30 |
Era infotech - Sql Injection |
behrouz mansoori |
|
| 2024-09-30 |
Era infotech - Blind Sql Injection Vulnerability |
behrouz mansoori |
|
| 2024-09-30 |
Backdoor.Win32.Boiling / Unauthenticated Remote Command Execution |
malvuln |
|
| 2024-09-30 |
Backdoor.Win32.Agent.pw / Remote Stack Buffer Overflow (SEH) |
malvuln |
|
| 2024-09-30 |
Backdoor.Win32.Benju.a / Unauthenticated Remote Command Execution |
malvuln |
|
| 2024-09-27 |
Elaine's Realtime CRM Automation 6.18.17 Cross Site Scripting |
Haythem Arfaoui |
|
| 2024-09-27 |
ABB Cylon Aspect 3.07.00 Remote Code Execution |
LiquidWorm |
|
| 2024-09-27 |
ABB Cylon Aspect 3.07.01 Hard-Coded Credentials |
LiquidWorm |
|
| 2024-09-25 |
Linux i915 PTE Use-After-Free |
Jann Horn |
|
| 2024-09-25 |
Apple iOS 17.2.1 Screen Time Passcode Retrieval / Mitigation Bypass |
SivertPL |
|
| 2024-09-25 |
Elaine's Realtime CRM Automation 6.18.17 Cross Site Scripting |
Haythem Arfaoui |
|
| 2024-09-23 |
BlackNET - Multiple Vulnerabilities |
bRpsd |
|
| 2024-09-19 |
Microsoft Windows TOCTOU Local Privilege Escalation |
jheysel-r7 |
|
| 2024-09-19 |
OVAS - PHP (by: oretnom23 ) v1.0 Multiple-SQLi |
nu11secur1ty |
|
| 2024-09-19 |
Microsoft SQL Server Masked Data Exposure |
Emad Al-Mousa |
|
| 2024-09-19 |
Cab Management System-1.0 Multiple-SQLi |
nu11secur1ty |
|
| 2024-09-19 |
Backdoor.Win32.CCInvader.10 / Authentication Bypass |
malvuln |
|
| 2024-09-19 |
Backdoor.Win32.BlackAngel.13 / Unauthenticated Remote Command Execution |
malvuln |
|
