Tag: 0day

[webapps] Net-Billetterie 2.9 – 'login' SQL Injection

[dos] Notepad3 1.0.2.350 – Denial of Service (PoC)

[webapps] PHP Mass Mail 1.0 – Arbitrary File Upload

[local] ntpd 4.2.8p10 – Out-of-Bounds Read (PoC)

[webapps] iServiceOnline 1.0 – 'r' SQL Injection

[webapps] Helpdezk 1.1.1 – 'query' SQL Injection

[webapps] EdTv 2 – 'id' SQL Injection

[webapps] Electricks eCommerce 1.0 – Cross-Site Request Forgery (Change Admin Password)

[dos] AMPPS 2.7 – Denial of Service (PoC)

[remote] Atlassian Jira – Authenticated Upload Code Execution (Metasploit)