>> ARCHIVE: 2018-07

VLC Media Player version 2.2.8 use-after-free arbitrary code execution proof of concept exploit.

WolfSight CMS version 3.2 suffers from a remote SQL injection vulnerability.

D-Link DIR601 version 2.02 suffers from a credential disclosure vulnerability.

ELO (Elektronischer Leitz-Ordner) versions 9 and 10 suffer from a remote time-based blind SQL injection vulnerability.

Monstra CMS 3.0.4 allows users to upload arbitrary files which leads to remote command execution on the remote server. An attacker may choose to upload a file containing PHP code…

IBM QRadar SIEM has three vulnerabilities in the Forensics web application that when chained together allow an attacker to achieve unauthenticated remote code execution. The first stage bypasses authentication by…

Barracuda ADC versions 5.x suffer from filter bypass and cross site scripting vulnerabilities.

Barracuda ADC versions 5.x suffer from a client-side script insertion vulnerability.

Instagram Clone Script version 2.0 suffers from a cross site scripting vulnerability.