PRTG Network Monitor 18.2.38 – Authenticated Remote Code Execution
>> CATEGORY: Security
PRTG Network Monitor 18.2.38 – Authenticated Remote Code Execution
McAfee ePO 5.9.1 – Registered Executable Local Access Bypass
OrientDB 3.0.17 GA Community Edition – Cross-Site Request Forgery / Cross-Site Scripting
Linux/x86 – INSERTION Encoder / Decoder execve(/bin/sh) Shellcode (88 bytes)
Imperva SecureSphere 13.x – ‘PWS’ Command Injection (Metasploit)
Kados R10 GreenBee – Multiple SQL Injection
QNAP TS-431 QTS < 4.2.2 – Remote Command Execution (Metasploit)
Anyburn 4.3 x86 – ‘Copy disc to image file’ Buffer Overflow – (UNICODE)(SEH)
FreeBSD – Intel SYSRET Privilege Escalation (Metasploit)
Drupal < 8.5.11 / < 8.6.10 – RESTful Web Services unserialize() Remote Command Execution (Metasploit)