Zero day exploit for nehelper on iOS 15.0 that allows any user-installed application to determine whether any application is installed on the device given its bundle ID.
>> AUTHOR: deepcore
Zero day exploit for Nehelper Wifi Info on iOS 15.0. XPC endpoint com.apple.nehelper accepts user-supplied parameter sdk-version, and if its value is less than or equal to 524288, the com.apple.developer.networking.wifi-info…
Apache James Server 2.3.2 – Remote Command Execution (RCE) (Authenticated) (2)
WordPress Plugin Ultimate Maps 1.2.4 – Reflected Cross-Site Scripting (XSS)
WordPress Plugin Popup 1.10.4 – Reflected Cross-Site Scripting (XSS)
FatPipe Networks WARP/IPVPN/MPVPN 10.2.2 – ‘Add Admin’ Cross-Site Request Forgery (CSRF)
FatPipe Networks WARP/IPVPN/MPVPN 10.2.2 – Config Download (Unauthenticated)
FatPipe Networks WARP 10.2.2 – Authorization Bypass
FatPipe Networks WARP/IPVPN/MPVPN 10.2.2 – Remote Privilege Escalation
FatPipe Networks WARP/IPVPN/MPVPN 10.2.2 – Hidden Backdoor Account (Write Access)