Confluence Server 7.12.4 – ‘OGNL injection’ Remote Code Execution (RCE) (Unauthenticated)
>> TAG: #remote exploit
Traffic Offense Management System 1.0 – SQLi to Remote Code Execution (RCE) (Unauthenticated)
WordPress Plugin Payments Plugin | GetPaid 2.4.6 – HTML Injection
Telegram Desktop 2.9.2 – Denial of Service (PoC)
Umbraco CMS 8.9.1 – Path traversal and Arbitrary File Write (Authenticated)
WordPress Plugin ProfilePress 3.1.3 – Privilege Escalation (Unauthenticated)
ZesleCP 3.1.9 – Remote Code Execution (RCE) (Authenticated)
Strapi CMS 3.0.0-beta.17.4 – Remote Code Execution (RCE) (Unauthenticated)
Bus Pass Management System 1.0 – ‘viewid’ SQL Injection
Usermin 1.820 – Remote Code Execution (RCE) (Authenticated)