CSZ CMS 1.2.7 – ‘title’ HTML Injection
>> TAG: #remote exploit
CSZ CMS 1.2.7 – ‘title’ HTML Injection
IQrouter 3.3.1 Firmware – Remote Code Execution
Oracle Solaris Common Desktop Environment 1.6 – Local Privilege Escalation
NSClient++ 0.5.2.35 – Authenticated Remote Code Execution
jizhi CMS 1.6.7 – Arbitrary File Download
P5 FNIP-8x16A FNIP-4xSH 1.0.20 – Cross-Site Request Forgery (Add Admin)
Neowise CarbonFTP 1.4 – Insecure Proprietary Password Encryption
CSZ CMS 1.2.7 – Persistent Cross-Site Scripting
PMB 5.6 – ‘logid’ SQL Injection
Atomic Alarm Clock 6.3 – Stack Overflow (Unicode+SEH)