Montiorr 1.7.6m – File Upload to XSS
Montiorr 1.7.6m – File Upload to XSS
Kimai 1.14 – CSV Injection
Worm.Win32.Busan.k malware suffers from an insecure transit vulnerability.
Windows 10 Wi-Fi Drivers For Intel Wireless Adapters version 22.30.0 suffer from a privilege escalation vulnerability.
SEO Panel version 4.8.0 remote blind SQL injection exploit. Original discovery in this version is attributed to Piyush Patil in February of 2021.
OpenPLC version 3 authenticated remote code execution exploit.
Hasura GraphQL version 1.3.3 remote code execution exploit.
SEO Panel 4.8.0 – ‘order_col’ Blind SQL Injection (2)
OpenPLC 3 – Remote Code Execution (Authenticated)
Hasura GraphQL 1.3.3 – Remote Code Execution