>> TAG: #remote exploit

i-doit 1.12 – ‘qr.php’ Cross-Site Scripting

BigTree 4.3.4 CMS – Multiple SQL Injection

Job Portal 3.1 – ‘job_submit’ SQL Injection

Jettweb PHP Hazır Rent A Car Sitesi Scripti V2 – ‘arac_kategori_id’ SQL Injection

Base64 Decoder 1.1.2 – Local Buffer Overflow (SEH Egghunter)

gnutls 3.6.6 – ‘verify_crt()’ Use-After-Free

Thomson Reuters Concourse & Firm Central < 2.13.0097 – Directory Traversal / Local File Inclusion

Fat Free CRM 0.19.0 – HTML Injection

WordPress Plugin Anti-Malware Security and Brute-Force Firewall 4.18.63 – Local File Inclusion

Oracle Weblogic Server Deserialization RCE – Raw Object (Metasploit)