[webapps] Domoticz 4.10577 – Unauthenticated Remote Command Execution

Domoticz 4.10577 – Unauthenticated Remote Command Execution

April 30, 2019
[webapps] HumHub 1.3.12 – Cross-Site Scripting

HumHub 1.3.12 – Cross-Site Scripting

[webapps] Spring Cloud Config 2.1.x – Path Traversal (Metasploit)

Spring Cloud Config 2.1.x – Path Traversal (Metasploit)

[webapps] Joomla! Component ARI Quiz 3.7.4 – SQL Injection

Joomla! Component ARI Quiz 3.7.4 – SQL Injection

[webapps] Intelbras IWR 3000N 1.5.0 – Cross-Site Request Forgery

Intelbras IWR 3000N 1.5.0 – Cross-Site Request Forgery

[webapps] Veeam ONE Reporter 9.5.0.3201 – Persistent Cross-site Scripting (Add/Edit Widget)

Veeam ONE Reporter 9.5.0.3201 – Persistent Cross-site Scripting (Add/Edit Widget)

[webapps] Intelbras IWR 3000N – Denial of Service (Remote Reboot)

Intelbras IWR 3000N – Denial of Service (Remote Reboot)

[webapps] Veeam ONE Reporter 9.5.0.3201 – Multiple Cross-Site Request Forgery

Veeam ONE Reporter 9.5.0.3201 – Multiple Cross-Site Request Forgery

[webapps] Veeam ONE Reporter 9.5.0.3201 – Persistent Cross-Site Scripting

Veeam ONE Reporter 9.5.0.3201 – Persistent Cross-Site Scripting

SGI IRIX 6.4.x Run-Time Linker Arbitrary File Creation

SGI IRIX versions 6.4.x and below run-time linker (rld) arbitrary file creation exploit.

April 29, 2019