Linksys RE6500 1.0.11.001 – Unauthenticated RCE
>> ARCHIVE: 2020-12
Linksys RE6500 1.0.11.001 – Unauthenticated RCE
Content Management System 1.0 – ‘First Name’ Stored XSS
Online Marriage Registration System version 1.0 authenticated remote code execution exploit. Original discovery of remote code execution in this version was discovered by Selim Enes Karaduman.
Cisco ASA version 9.14.1.10 and FTD version 6.6.0.1 path traversal exploit. Original discovery of this vulnerability is attributed to 3ndG4me in October of 2020.
Task Management System version 1.0 suffers from a local file inclusion vulnerability.
PHPJabbers Appointment Scheduler 2.3 suffers from a cross site scripting vulnerability.
libbabl version 0.1.62 broken double-free detection proof of concept exploit.
Gitlab version 11.4.7 authenticated remote code execution exploit.
Alumni Management System version 1.0 suffers from a remote shell upload vulnerability.
Solaris SunSSH versions 10 through 11.0 on x86 libpam remote root exploit.