Month: June 2018

[webapps] MyBB Recent Threads Plugin 1.0 – Cross-Site Scripting

[dos] Linux Kernel < 4.16.11 – 'ext4_read_inline_data()' Memory Corruption

[local] Windows – UAC Protection Bypass (Via Slui File Handler Hijack) (Metasploit)

[remote] CyberArk < 10 – Memory Disclosure

[webapps] SearchBlox 8.6.7 – XML External Entity Injection

[local] Zip-n-Go 4.9 – Buffer Overflow (SEH)

[webapps] Smartshop 1 – Cross-Site Request Forgery

[webapps] GreenCMS 2.3.0603 – Cross-Site Request Forgery (Add Admin)

[webapps] GreenCMS 2.3.0603 – Cross-Site Request Forgery / Remote Code Execution

[webapps] Smartshop 1 – 'id' SQL Injection