>> ARCHIVE: 2021-01

Backdoor.Win32.Zombam.k malware suffers from a remote string dereference stack buffer overflow vulnerability.

sar2html version 3.2.1 remote code execution exploit. Original discovery for this vector of attack is attributed to Furkan Kayapinar in August of 2019.

CMS Made Simple version 2.2.15 suffers from an authenticated remote command execution vulnerability.

Subrion CMS version 4.2.1 suffers from a cross site scripting vulnerability. Original discovered of cross site scripting in this version is attributed to Ismail Tasdelen in July of 2018.

Incom CMS version 2.0 suffers from an unauthenticated arbitrary file upload vulnerability.

House Rental and Property Listing version 1.0 suffers from multiple persistent cross site scripting vulnerabilities.

Intel Matrix Storage Event Monitor x86 version 8.0.0.1039 suffers from an IAANTMON unquoted service path vulnerability.

Click2Magic version 1.1.5 suffers from a persistent cross site scripting vulnerability.

EgavilanMedia User Registration and Login System with Admin Panel version 1.0 suffers from multiple persistent cross site scripting vulnerabilities. Original discovery of persistent cross site scripting in this version is…