Blog RSSExploits RSSFacebook

WEB

Date D   Description Plat. Author
2017-06-01   WebKit Document::prepareForDestruction / CachedFrame Universal XSS 96 WEB lokihardt
2017-05-31   TerraMaster F2-420 NAS TOS 3.0.30 - Unauthenticated Remote Code Execution as Root 174 WEB Simone Margaritelli
2017-05-31   IBM Informix Dynamic Server / Informix Open Admin Tool - DLL Injection / Remote Code Execution / Hea 84 WEB SecuriTeam
2017-05-31   KEMP LoadMaster 7.135.0.13245 - Persistent Cross-Site Scripting / Remote Code Execution 119 WEB SecuriTeam
2017-05-31   uc-http Daemon - Local File Inclusion / Directory Traversal 91 WEB Project Insecurity
2017-05-31   Apple Safari 10.0.3(12602.4.8) / WebKit - 'HTMLObjectElement::updateWidget' Universal Cross-Site S 65 WEB Google Security Research
2017-05-31   WebKit - Stealing Variables via Page Navigation in FrameLoader::clear 83 WEB Google Security Research
2017-05-31   WebKit - enqueuePageshowEvent and enqueuePopstateEvent Universal Cross-Site Scripting 68 WEB Google Security Research
2017-05-31   WebKit - 'ContainerNode::parserRemoveChild' Universal Cross-Site Scripting 57 WEB Google Security Research
2017-05-31   Apple WebKit / Safari 10.0.3(12602.4.8) - 'Editor::Command::execute' Universal Cross-Site Scriptin 81 WEB Google Security Research
2017-05-25   NetGain EM 7.2.647 build 941 - Authentication Bypass / Local File Inclusion 106 WEB f3ci
2017-05-23   VX Search Enterprise GET Buffer Overflow 146 WEB Daniel Teixeira
2017-05-23   Sync Breeze Enterprise GET Buffer Overflow 105 WEB Daniel Teixeira
2017-05-23   MediaWiki SyntaxHighlight Extension Option Injection 221 WEB Yorick Koster
2017-05-22   Mantis Bug Tracker 1.3.10/2.3.0 - Cross-Site Request Forgery 52 WEB hyp3rlinx
2017-05-15   miniupnpc 2.0.20170421 Denial Of Service 235 WEB oststrom
2017-05-11   ASUS Routers CSRF / Information Disclosure 197 WEB Yakov Shafranovich
2017-05-10   LogRhythm Network Monitor - Authentication Bypass / Command Injection 103 WEB Francesco Oddo
2017-05-05   WordPress 4.6 - Unauthenticated Remote Code Execution 220 WEB Dawid Golunski
2017-05-05   Serviio PRO 1.8 DLNA Media Streaming Server - REST API Arbitrary Code Execution 78 WEB LiquidWorm
2017-05-05   Serviio PRO 1.8 DLNA Media Streaming Server - REST API Arbitrary Password Change 173 WEB LiquidWorm
2017-05-05   Serviio PRO 1.8 DLNA Media Streaming Server - REST API Information Disclosure 92 WEB LiquidWorm
2017-05-05   Alerton Webtalk 2.5 / 3.3 - Multiple Vulnerabilities 86 WEB David Tomaschik
2017-04-28   Simple File Uploader - Arbitrary File Download 195 WEB Daniel Godoy
2017-04-28   TYPO3 News Module - SQL Injection 110 WEB Charles Fol