Exploits

Ramikan GoAhead 2.5.0 - Host Header Injection
2019-09-30 remote multiple

Kevin Kirsche phpIPAM 1.4 - SQL Injection
2019-09-30 webapps php 80

r00tpgp vBulletin 5.x - Remote Command Execution (Metasploit)
2019-09-30 webapps php

mm0r1 PHP 7.1 < 7.3 - 'json serializer' Disable Functions Bypass
2019-09-28 webapps multiple

m0ze WordPress Theme Zoner Real Estate - 4.1.1 Persistent Cross-Site Scripting
2019-09-27 webapps php

LiquidWorm V-SOL GPON/EPON OLT Platform 2.03 - Remote Privilege Escalation
2019-09-27 webapps hardware

LiquidWorm V-SOL GPON/EPON OLT Platform 2.03 - Cross-Site Request Forgery
2019-09-27 webapps hardware

LiquidWorm V-SOL GPON/EPON OLT Platform 2.03 - Unauthenticated Configuration Download
2019-09-27 webapps hardware

Anıl Baran Yelken thesystem App 1.0 - 'username' SQL Injection
2019-09-27 webapps php

İsmail Güngör thesystem App 1.0 - Persistent Cross-Site Scripting
2019-09-27 webapps php

Sadik Cetin thesystem App 1.0 - 'server_name' SQL Injection
2019-09-27 webapps php

Xavi Beltran Mobatek MobaXterm 12.1 - Buffer Overflow (SEH)
2019-09-27 local windows

strider InoERP 0.7.2 - Persistent Cross-Site Scripting
2019-09-27 webapps php

cakes citecodecrashers Pic-A-Point 1.1 - 'Consignment' SQL Injection
2019-09-26 webapps php

Semen Alexandrovich Lyhin inoERP 4.15 - 'download' SQL Injection
2019-09-26 webapps php

Unk9vvN all-in-one-seo-pack 3.2.7 - Persistent Cross-Site Scripting
2019-09-26 webapps php