>> TAG: #remote exploit

Nagios XI 5.2.[6-9], 5.3, 5.4 – Chained Remote Root

Drupal < 7.58 – 'Drupalgeddon3' Authenticated Remote Code (Metasploit)

WordPress Plugin WP with Spritz 1.0 – Remote File Inclusion

TP-Link Technologies TL-WA850RE Wi-Fi Range Extender – Unauthenticated Remote Reboot

October CMS User Plugin 1.4.5 – Persistent Cross-Site Scripting

Allok AVI to DVD SVCD VCD Converter 4.0.1217 – Buffer Overflow (SEH)

MyBB Threads to Link Plugin 1.3 – Cross-Site Scripting

GitList 0.6 – Unauthenticated Remote Code Execution

SickRage < v2018.03.09 – Clear-Text Credentials HTTP Response

Jfrog Artifactory < 4.16 – Unauthenticated Arbitrary File Upload / Remote Command Execution