Collectric CMU 1.0 – ‘lang’ SQL injection
>> TAG: #remote exploit
Collectric CMU 1.0 – ‘lang’ SQL injection
Linux/x86 – Egghunter + sigaction-based Shellcode (27 bytes)
NICO-FTP 3.0.1.19 – Buffer Overflow (SEH)
Microsoft Windows – Double Dereference in NtEnumerateKey Elevation of Privilege
Roundcube rcfilters plugin 2.1.6 – Cross-Site Scripting
Microsoft Windows – ‘CiSetFileCache’ WDAC Security Feature Bypass TOCTOU
WordPress Plugin Wechat Broadcast 1.2.0 – Local File Inclusion
Linux/ARM – Jump Back Shellcode + execve(“/bin/sh”, NULL, NULL) Shellcode (4 Bytes)
NUUO NVRMini2 3.8 – ‘cgi_system’ Buffer Overflow (Enable Telnet)
Bulk SQL Injection using Burp-to-SQLMap