>> TAG: #remote exploit

VUPlayer 2.49 – (.pls) Stack Buffer Overflow (DEP Bypass)

AXIS Multiple Products – Authenticated Remote Command Execution via devtools Vector

WordPress Ultimate Product Catalog 3.9.8 – (do_shortcode via ajax) Blind SQL Injection

Barracuda Web App Firewall 8.0.1.008/Load Balancer 5.4.0.004 – Post Auth Remote Root Exploit (Metasploit) (3)

PhpMyAdmin 4.6.2 – Post-Auth Remote Code Execution

WebKit – TypedArray.copyWithin Memory Corruption

Trend Micro Deep Discovery 3.7, 3.8 SP1 (3.81), and 3.8 SP2 (3.82) – hotfix_upload.cgi filename Remote Code Execution

Easy File Sharing Web Server 7.2 – SEH Overflow (Egghunter)

Centreon 2.5.3 – Web Useralias Command Execution (Metasploit)

VMware – Setuid vmware-mount Popen lsb_release Privilege Escalation (VMSA-2013-0010)