ManageEngine ADSelfService Build prior to 6003 – Remote Code Execution (Unauthenticated)
>> CATEGORY: Security
ManageEngine ADSelfService Build prior to 6003 – Remote Code Execution (Unauthenticated)
BarcodeOCR 19.3.6 – ‘BarcodeOCR’ Unquoted Service Path
All-Dynamics Digital Signage System 2.0.2 – Cross-Site Request Forgery (Add Admin)
Daily Expenses Management System 1.0 – ‘item’ SQL Injection
Victor CMS 1.0 – ‘Search’ SQL Injection
ACTi NVR3 Standard or Professional Server 3.0.12.42 – Denial of Service (PoC)
QlikView 12.50.20000.0 – ‘FTP Server Address’ Denial of Service (PoC)
Stock Management System 1.0 – Authentication Bypass
Pi-hole 4.3.2 – Remote Code Execution (Authenticated)
Mocha Telnet Lite for iOS 4.2 – ‘User’ Denial of Service (PoC)