multiple

日期	标题	类别	作者
2020-07-14	BSA Radar 1.6.7234.24750 – Local File Inclusion	webapps	William Summerhill
2020-07-08	Qmail SMTP 1.03 – Bash Environment Variable Injection	remote	1F98D
2020-07-07	BSA Radar 1.6.7234.24750 – Authenticated Privilege Escalation	webapps	William Summerhill
2020-07-06	RSA IG&L Aveksa 7.1.1 – Remote Code Execution	webapps	Jakub Palaczynski
2020-07-02	OCS Inventory NG 2.7 – Remote Code Execution	webapps	Askar
2020-06-24	BSA Radar 1.6.7234.24750 – Persistent Cross-Site Scripting	webapps	William Summerhill
2020-06-22	WebPort 1.19.1 – Reflected Cross-Site Scripting	webapps	Emre ÖVÜNÇ
2020-06-22	Odoo 12.0 – Local File Inclusion	webapps	Emre ÖVÜNÇ
2020-06-22	FileRun 2019.05.21 – Reflected Cross-Site Scripting	webapps	Emre ÖVÜNÇ
2020-06-17	OpenCTI 3.3.1 – Directory Traversal	webapps	Raif Berkay Dincel
2020-06-15	SOS JobScheduler 1.13.3 – Stored Password Decryption	remote	Sander Ubink
2020-06-12	Sysax MultiServer 6.90 – Reflected Cross Site Scripting	webapps	Luca Epifanio
2020-06-12	Avaya IP Office 11 – Password Disclosure	webapps	hyp3rlinx
2020-06-12	SmarterMail 16 – Arbitrary File Upload	webapps	vvhack.org
2020-06-10	HFS Http File Server 2.3m Build 300 – Buffer Overflow (PoC)	remote	hyp3rlinx
2020-06-04	Cayin Digital Signage System xPost 2.5 – Remote Command Injection	webapps	LiquidWorm
2020-06-04	Cayin Signage Media Player 3.0 – Remote Command Injection (root)	webapps	LiquidWorm
2020-06-04	Cayin Content Management Server 11.0 – Remote Command Injection (root)	webapps	LiquidWorm
2020-06-01	VMware vCenter Server 6.7 – Authentication Bypass	webapps	Photubias
2020-05-29	Crystal Shard http-protection 0.2.0 – IP Spoofing Bypass	webapps	Halis Duraki
2020-05-28	NOKIA VitalSuite SPM 2020 – ‘UserName’ SQL Injection	webapps	Berk Dusunur
2020-05-22	WebLogic Server – Deserialization RCE – BadAttributeValueExpException (Metasploit)	remote	Metasploit
2020-05-21	OpenEDX platform Ironwood 2.5 – Remote Code Execution	webapps	Daniel Monzón
2020-05-20	BIND – ‘TSIG’ Denial of Service	dos	Teppei Fukuda