>> TAG: #remote exploit

EPSON Status Monitor 3 ‘EPSON_PM_RPCV4_06’ – Unquoted Service Path

Global Registration Service 1.0.0.3 – ‘GREGsvc.exe’ Unquoted Service Path

Pearson Vue VTS 2.3.1911 Installer – VUEApplicationWrapper Unquoted Service Path

ATX MiniCMTS200a Broadband Gateway 2.0 – Credential Disclosure

SAP Lumira 1.31 – Stored Cross-Site Scripting

WordPress Theme Accesspress Social Icons 1.7.9 – SQL injection (Authenticated)

WordPress Theme Wibar 1.1.8 – ‘Brand Component’ Stored Cross Site Scripting

Ruckus IoT Controller (Ruckus vRIoT) 1.5.1.0.21 – Remote Code Execution

WonderCMS 3.1.3 – ‘uploadFile’ Stored Cross-Site Scripting

FrozenNode Laravel-Administrator 4 – Unrestricted File Upload (Authenticated)