ImpressCMS v1.4.4 – Unrestricted File Upload
>> ARCHIVE: 2022-05
ImpressCMS v1.4.4 – Unrestricted File Upload
Ruijie Reyee Mesh Router – Remote Code Execution (RCE) (Authenticated)
DLINK DIR850 – Insecure Access Control
SAP BusinessObjects Intelligence 4.3 – XML External Entity (XXE)
TCQ – ITeCProteccioAppServer.exe – Unquoted Service Path
An “Incorrect Use of a Privileged API” vulnerability in PrintixService.exe in Printix’s “Printix Secure Cloud Print Management” versions 1.3.1106.0 and below allows a local or remote attacker the ability change…
Cryakl ransomware looks for and loads a DLL named “wow64log.dll” in WindowsSystem32. Therefore, we can drop our own DLL to intercept and terminate the malware pre-encryption. The exploit DLL will…
Petya ransomware looks for and loads a DLL named “wow64log.dll” in WindowsSystem32. Therefore, we can drop our own DLL to intercept and terminate the malware pre-encryption. The exploit DLL will…
Travel Management System version 1.0 suffers from multiple remote SQL injection vulnerabilities. Original discovery of SQL injection in this version is attributed to Bobby Cooke and hyd3sec in August of…
School Dormitory Management version 1.0 suffers from a remote SQL injection vulnerability.