Online Ordering System 1.0 – Arbitrary File Upload to Remote Code Execution
>> TAG: #remote exploit
Online Ordering System 1.0 – Arbitrary File Upload to Remote Code Execution
Local Services Search Engine Management System (LSSMES) 1.0 – Blind & Error based SQL injection (Authenticated)
Local Services Search Engine Management System (LSSMES) 1.0 – ‘name’ Persistent Cross-Site Scripting (XSS)
AnyDesk 5.5.2 – Remote Code Execution
Web Based Quiz System 1.0 – ‘MCQ options’ Persistent/Stored Cross-Site Scripting
Web Based Quiz System 1.0 – ‘name’ Persistent/Stored Cross-Site Scripting
Tiny Tiny RSS – Remote Code Execution
Zen Cart 1.5.7b – Remote Code Execution (Authenticated)
WiFi Mouse 1.7.8.5 – Remote Code Execution
FortiLogger 4.4.2.2 – Unauthenticated Arbitrary File Upload (Metasploit)