Open Web Analytics 1.7.3 – Remote Code Execution (RCE)
>> AUTHOR: deepcore
Open Web Analytics 1.7.3 – Remote Code Execution (RCE)
CVAT 2.0 – SSRF (Server Side Request Forgery)
MSNSwitch Firmware MNT.2408 – Remote Code Exectuion (RCE)
AVEVA InTouch Access Anywhere Secure Gateway 2020 R2 – Path Traversal
IOTransfer V4 – Unquoted Service Path
SmartRG Router SR510n 2.6.13 – RCE (Remote Code Execution)
http://bankoksuwan.go.th/p.htm notified by ./cOLI
http://www.thungyai-ssk.go.th/p.htm notified by ./cOLI
WordPress Blog2Social versions 6.9.11 and below suffer from a missing authorization vulnerability.