>> TAG: #remote exploit

mySurvey 1.0 – ‘id’ SQL Injection

EasyService Billing 1.0 – Cross-Site Request Forgery

Employee Work Schedule 5.9 – ‘cal_id’ SQL Injection

Symfony 2.7.0 < 4.0.10 – Denial of Service

KomSeo Cart 1.3 – ‘my_item_search’ SQL Injection

Oracle WebCenter Sites 11.1.1.8.0/12.2.1.x – Cross-Site Scripting

Oracle WebCenter FatWire Content Server < 7 – Improper Access Control

Skia and Firefox – Integer Overflow in SkTDArray Leading to Out-of-Bounds Write

SAP Internet Transaction Server 6200.x – Session Fixation / Cross-Site Scripting

Microsoft Edge Chakra – Cross Context Use-After-Free