Blog RSSExploits RSSFacebook

WEB

Date D   Description Plat. Author
2014-06-10   Xornic Contact Us Form CAPTCHA Bypass / XSS 87 WEB Scott Arciszewski
2014-06-09   Madness Pro <= 1.14 - SQL Injection 63 WEB bwall
2014-06-09   Madness Pro <= 1.14 - Persistent XSS 82 WEB bwall
2014-05-22   SPIP - CMS < 3.0.9 / 2.1.22 / 2.0.23 - Privilege Escalation 74 WEB Gregory DRAPERI
2014-05-20   UPS Web/SNMP-Manager CS121 Login Bypass 72 WEB jkmac
2014-05-20   SafeNet Sentinel Protection Server 7.0 - 7.4 and Sentinel Keys Server 1.0.3 - 1.0.4 Directory Traver 62 WEB Matt Schmidt
2014-05-20   HP Release Control Authenticated XXE 84 WEB Brandon Perry
2014-05-16   ElasticSearch Remote Code Execution 66 WEB Jeff Geiger
2014-05-14   WordPress Formidable Forms Remote Code Execution 80 WEB Manish Tanwar
2014-05-14   AlienVault OSSIM 4.6.1 - Authenticated SQL Injection 99 WEB Chris Hebert
2014-05-09   F5 iControl Remote Command Execution Vulnerability 63 WEB Brandon Perry
2014-05-04   HP Laser Jet - JavaScript Persistent XSS via PJL Directory Traversal 69 WEB @0x00string
2014-04-25   Bonefire v.0.7.1 - Reinstall Admin Account Exploit 54 WEB Mehmet Ince
2014-04-23   No-CMS 0.6.6 rev 1 - Admin Account Hijacking / RCE Exploit via Static Encryption Key 170 WEB Mehmet Ince
2014-04-23   Sixnet Sixview 2.4.1 - Web Console Directory Traversal 54 WEB daniel svartman
2014-04-22   Comtrend CT 5361T Cross Site Request Forgery / Cross Site Scripting 78 WEB TUNISIAN CYBER
2014-04-22   ATSEngine credential disclosure vulnerability 46 WEB Xylitol
2014-04-21   CU3ER 1.24 Cross Site Scripting / Content Spoofing 64 WEB MustLive
2014-04-16   NETGEAR N600 WIRELESS DUAL BAND WNDR3400 - Multiple Vulnerabilities 70 WEB Santhosh Kumar
2014-04-15   Madss Software Solution SQL Injection 114 WEB Ashiyane Digital Security Team
2014-04-14   Plex Media Server 0.9.9.10 CSRF / Disclosure 166 WEB S. Viehbock
2014-04-14   eScan Web Management Console Command Injection 57 WEB juan vazquez
2014-04-10   Sophos Web Protection Appliance Command Execution 53 WEB Brandon Perry
2014-04-10   RunCMS 1.6.1 - 'pm.class.php' Multiple SQL Injection Vulnerabilities 108 WEB The:Paradox
2014-04-09   Vtiger Install Unauthenticated Remote Command Execution 34 WEB Jonathan Borgeaud