>> TAG: #remote exploit

Gespage 7.4.8 – SQL Injection

VMware Workstation – ALSA Config File Local Privilege Escalation (Metasploit)

Linksys WVBR0-25 – User-Agent Command Execution (Metasploit)

Xplico – Remote Code Execution (Metasploit)

WordPress Plugin Smart Google Code Inserter < 3.5 – Authentication Bypass / SQL Injection

Spectre – Trick Error-Free Applications Into Giving Up Secret Information

EMC xPression 4.5SP1 Patch 13 – ‘model.jobHistoryId’ SQL Injection

[Hebrew] Digital Whisper Security Magazine #90

Cambium ePMP1000 – ‘get_chart’ Shell via Command Injection (Metasploit)

Cambium ePMP1000 – ‘ping’ Shell via Command Injection (Metasploit)