DAMICMS 6.0.0 – Cross-Site Request Forgery (Add Admin)
>> TAG: #0day
DAMICMS 6.0.0 – Cross-Site Request Forgery (Add Admin)
Enhanced Mitigation Experience Toolkit (EMET) – XML External Entity Injection
Core FTP LE 2.2 – Buffer Overflow (PoC)
VMware NSX SD-WAN Edge < 3.1.0 – Command Injection
FTPShell client 6.70 (Enterprise edition) – Stack Buffer Overflow (Metasploit)
Nagios XI 5.2.6-5.4.12 – Chained Remote Code Execution (Metasploit)
HongCMS 3.0.0 – SQL Injection
hycus CMS 1.0.4 – Authentication Bypass
BEESCMS 4.0 – Cross-Site Request Forgery (Add Admin)
DIGISOL DG-HR3400 Wireless Router – Cross-Site Scripting