Tag: remote exploit

[webapps] Cyclos 4.14.7 – DOM Based Cross-Site Scripting (XSS)

[webapps] PHProjekt PhpSimplyGest v1.3. – Stored Cross-Site Scripting (XSS)

[remote] USR IOT 4G LTE Industrial Cellular VPN Router 1.0.36 – Remote Root Backdoor

[webapps] MyBB 1.8.29 – MyBB 1.8.29 – Remote Code Execution (RCE) (Authenticated)

[webapps] Beehive Forum – Account Takeover

[webapps] WordPress Plugin Blue Admin 21.06.01 – Cross-Site Request Forgery (CSRF)

[webapps] Joomla Plugin SexyPolling 2.1.7 – SQLi

[webapps] WordPress Plugin stafflist 3.1.2 – SQLi (Authenticated)

[webapps] Bitrix24 – Remote Code Execution (RCE) (Authenticated)

[webapps] Navigate CMS 2.9.4 – Server-Side Request Forgery (SSRF) (Authenticated)