>> TAG: #remote exploit

Rocket.Chat 3.12.1 – NoSQL Injection to RCE (Unauthenticated) (2)

Online Covid Vaccination Scheduler System 1.0 – ‘username’ time-based blind SQL Injection

WordPress Plugin Plainview Activity Monitor 20161228 – Remote Code Execution (RCE) (Authenticated) (2)

Black Box Kvm Extender 3.4.31307 – Local File Inclusion

Netgear DGN2200v1 – Remote Command Execution (RCE) (Unauthenticated)

Billing System Project 1.0 – Remote Code Execution (RCE) (Unauthenticated)

Pallets Werkzeug 0.15.4 – Path Traversal

Exam Hall Management System 1.0 – Unrestricted File Upload (Unauthenticated)

Visual Tools DVR VX16 4.2.28 – Local Privilege Escalation

Phone Shop Sales Managements System 1.0 – Authentication Bypass (SQLi)