The COMMITCONFIG verb is used by a CMS client to upload and modify the configuration of the CMS Server. The vulnerability is in the FileName parameter, which accepts directory traversal…
>> ARCHIVE: 2019-02
Apple macOS version 10.13.5 local privilege escalation exploit.
Valentina Studio 9.0.5 Linux – ‘Host’ Buffer Overflow (PoC)
C4G Basic Laboratory Information System (BLIS) 3.4 – SQL Injection
MikroTik RouterOS < 6.43.12 (stable) / < 6.42.12 (long-term) – Firewall and NAT Bypass
AirDrop 2.0 – Denial of Service (DoS)
EI-Tube 3 – SQL Injection
Memu Play 6.0.7 – Privilege Escalation
ScreenStream 3.0.15 – Denial of Service
RealTerm Serial Terminal 2.0.0.70 – ‘Echo Port’ Buffer Overflow (SEH)