>> TAG: #remote exploit

MySQL User-Defined (Linux) x32 / x86_64 – ‘sys_exec’ Local Privilege Escalation (2)

Strapi 3.0.0-beta – Set Password (Unauthenticated)

Strapi 3.0.0-beta.17.7 – Remote Code Execution (RCE) (Authenticated)

Projectsend r1295 – ‘name’ Stored XSS

CyberPanel 2.1 – Remote Code Execution (RCE) (Authenticated)

ProcessMaker 3.5.4 – Local File inclusion

WordPress Plugin Mail Masta 1.0 – Local File Inclusion (2)

HP OfficeJet 4630/7110 MYM1FN2025AR/2117A – Stored Cross-Site Scripting (XSS)

Online Leave Management System 1.0 – Arbitrary File Upload to Shell (Unauthenticated)

Online Traffic Offense Management System 1.0 – Remote Code Execution (RCE) (Unauthenticated)