BlogEngine.NET 3.3.6/3.3.7 – ‘dirPath’ Directory Traversal / Remote Code Execution
>> CATEGORY: Security
BlogEngine.NET 3.3.6/3.3.7 – ‘dirPath’ Directory Traversal / Remote Code Execution
BlogEngine.NET 3.3.6/3.3.7 – ‘theme Cookie’ Directory Traversal / Remote Code Execution
Sahi pro 7.x/8.x – Directory Traversal
Sahi pro 8.x – SQL Injection
Sahi pro 8.x – Cross-Site Scripting
Linux/x86_64 – execve(/bin/sh) Shellcode (22 bytes)
Serv-U FTP Server < 15.1.7 – Local Privilege Escalation
AROX School-ERP Pro – Unauthenticated Remote Command Execution (Metasploit)
Spring Security OAuth – Open Redirector
Thunderbird ESR < 60.7.XXX – Type Confusion