Profiling System for Human Resource Management 1.0 – Remote Code Execution (Unauthenticated)
>> TAG: #remote exploit
BRAdmin Professional 3.75 – ‘BRA_Scheduler’ Unquoted Service Path
VestaCP 0.9.8 – ‘v_sftp_licence’ Command Injection
Eclipse Mosquitto MQTT broker 2.0.9 – ‘mosquitto’ Unquoted Service Path
SOYAL Biometric Access Control System 5.0 – ‘Change Admin Password’ CSRF
SOYAL Biometric Access Control System 5.0 – Master Code Disclosure
SOYAL 701 Server 9.0.1 – Insecure Permissions
SOYAL 701 Client 9.0.1 – Insecure Permissions
KZTech/JatonTec/Neotel JT3500V 4G LTE CPE 2.0.1 – Command Injection (Authenticated)
Boonex Dolphin 7.4.2 – ‘width’ Stored XSS