Various CDATA OLTs suffer from backdoor access with telnet, credential leaks, shell escape with root privileges, denial of service, and weak encryption algorithm vulnerabilities.
This Metasploit module exploits a directory traversal in F5’s BIG-IP Traffic Management User Interface (TMUI) to upload a shell script and execute it as the root user.
Proof of concept exploit for ClearPass Policy Manager which suffers from an unauthenticated remote command execution vulnerability.
http://mlds.go.th/z.htm notified by Mr.L3RB1
BSA Radar 1.6.7234.24750 – Cross-Site Request Forgery (Change Password)
SuperMicro IPMI 03.40 – Cross-Site Request Forgery (Add Admin)
File Management System version 1.1 suffers from a persistent cross site scripting vulnerability.
RiteCMS version 2.2.1 suffers from an authenticated remote code execution vulnerability.
Proof of concept exploit that leverages a double-free in the DDGifSlurp function in decoding.c in the android-gif-drawable library in order to achieve remote code execution in WhatsApp.
Grafana version 7.0.1 denial of service proof of concept exploit.