MonoCMS Blog 1.0 – Arbitrary File Deletion (Authenticated)
>> TAG: #remote exploit
MonoCMS Blog 1.0 – Arbitrary File Deletion (Authenticated)
WebsiteBaker 2.12.2 – ‘display_name’ SQL Injection (authenticated)
GetSimple CMS 3.3.16 – Persistent Cross-Site Scripting (Authenticated)
Typesetter CMS 5.1 – ‘Site Title’ Persistent Cross-Site Scripting
WebsiteBaker 2.12.2 – Remote Code Execution
BearShare Lite 5.2.5 – ‘Advanced Search’Buffer Overflow in (PoC)
CloudMe 1.11.2 – Buffer Overflow ROP (DEP,ASLR)
Mida eFramework 2.8.9 – Remote Code Execution
MSI Ambient Link Driver 1.0.0.8 – Local Privilege Escalation
Joplin 1.0.245 – Arbitrary Code Execution (PoC)