>> TAG: #remote exploit

BlogEngine.NET 3.3.6/3.3.7 – XML External Entity Injection

Linux – Use-After-Free via race Between modify_ldt() and #BR Exception

Cisco Prime Infrastructure Health Monitor – TarArchive Directory Traversal (Metasploit)

Cisco Prime Infrastructure – Runrshell Privilege Escalation (Metasploit)

BlogEngine.NET 3.3.6/3.3.7 – ‘dirPath’ Directory Traversal / Remote Code Execution

BlogEngine.NET 3.3.6/3.3.7 – ‘theme Cookie’ Directory Traversal / Remote Code Execution

Sahi pro 7.x/8.x – Directory Traversal

Sahi pro 8.x – SQL Injection

Sahi pro 8.x – Cross-Site Scripting

Linux/x86_64 – execve(/bin/sh) Shellcode (22 bytes)