vBulletin 4.x – SQLi in breadcrumbs via xmlrpc API (Post-Auth)
>> TAG: #remote exploit
vBulletin 4.x – SQLi in breadcrumbs via xmlrpc API (Post-Auth)
DropBearSSHD <= 2015.71 – Command Injection
Internet Explorer 11 (on Windows 10) – VBScript Memory Corruption Proof-of-Concept Exploit (MS16-051)
vBulletin 5.x/4.x – Persistent XSS in AdminCP/ApiLog via xmlrpc API (Post-Auth)
Clear Voyager Hotspot IMW-C910W – Arbitrary File Disclosure
Joomla Guru Pro (com_guru) Component – SQL Injection
Windows x86 URLDownloadToFileA()+SetFileAttributesA()+WinExec()+ExitProcess() Shellcode
Adobe Flash Player 22.0.0.192 – SceneAndFrameData Memory Corruption
Linux x86 Reverse Shell using Xterm ///usr/bin/xterm -display 127.1.1.1:10
Apache Archiva 1.3.9 – Multiple CSRF Vulnerabilities