Who’s Who Script – CSRF Exploit (Add Admin Account)
>> TAG: #remote exploit
Who’s Who Script – CSRF Exploit (Add Admin Account)
Position independent & Alphanumeric 64-bit execve(“/bin/sh”,NULL,NULL); (87 bytes)
ZTE ZXDSL 831CII – Insecure Direct Object Reference
ManageEngine OpManager, Social IT Plus and IT360 – Multiple Vulnerabilities
PHP-Fusion 7.02.07 – SQL Injection
Password Manager Pro / Pro MSP – Blind SQL Injection
Another WordPress Classifieds Plugin – SQL Injection
Progress OpenEdge 11.2 – Directory Traversal
Visual Mining NetCharts Server Remote Code Execution
Internet Explorer 8 MS14-035 Use-After-Free Exploit