WordPress Plugin Like Button 1.6.0 – Authentication Bypass
>> TAG: #remote exploit
WordPress Plugin Like Button 1.6.0 – Authentication Bypass
Microsoft Exchange 2003 – base64-MIME Remote Code Execution
Karenderia Multiple Restaurant System 5.3 – Local File Inclusion
Symantec DLP 15.5 MP1 – Cross-Site Scripting
Serv-U FTP Server – prepareinstallation Privilege Escalation (Metasploit)
Mac OS X TimeMachine – ‘tmdiagnose’ Command Injection Privilege Escalation (Metasploit)
Centreon 19.04 – Remote Code Execution
Linux/ARM64 – Jump Back Shellcode + execve(“/bin/sh”, NULL, NULL) Shellcode (8 Bytes)
Linux/ARM64 – execve(“/bin/sh”, [“/bin/sh”], NULL) Shellcode (48 Bytes)
Linux Mint 18.3-19.1 – ‘yelp’ Command Injection (Metasploit)