microASP (Portal+) CMS – ‘pagina.phtml?explode_tree’ SQL Injection
>> TAG: #0day
microASP (Portal+) CMS – ‘pagina.phtml?explode_tree’ SQL Injection
Linux/x86 – Multiple keys XOR Encoder / Decoder execve(/bin/sh) Shellcode (59 bytes)
Linux/x86 – shred file Shellcode (72 bytes)
NSClient++ 0.5.2.35 – Privilege Escalation
iOS 12.1.3 – ‘cfprefsd’ Memory Corruption
LG Supersign EZ CMS – Remote Code Execution (Metasploit)
ReadyAPI 2.5.0 / 2.6.0 – Remote Code Execution
Instagram Auto Follow – Authentication Bypass
Crestron AM/Barco wePresent WiPG/Extron ShareLink/Teq AV IT/SHARP PN-L703WA/Optoma WPS-Pro/Blackbox HD WPS/InFocus LiteShow – Remote Command Injection
Linux/x86 – Reverse Shell Shellcode (91 Bytes) + Python Wrapper