>> TAG: #remote exploit

Booked Scheduler 2.7.5 – Remote Command Execution (Metasploit)

Microsoft Edge Chakra 1.11.4 – Read Permission via Type Confusion

Fiberhome AN5506-04-F RP2669 – Persistent Cross-Site Scripting

CMSsite 1.0 – Multiple Cross-Site Request Forgery

WordPress Plugin Cerber Security, Antispam & Malware Scan 8.0 – Multiple Bypass Vulnerabilities

elFinder 2.1.47 – ‘PHP connector’ Command Injection

OOP CMS BLOG 1.0 – Multiple SQL Injection

OOP CMS BLOG 1.0 – Multiple Cross-Site Request Forgery

FileZilla 3.40.0 – ‘Local search’ / ‘Local site’ Denial of Service (PoC)

Google Chrome < M72 – PaymentRequest Service Use-After-Free