Security Vulnerabilities & Exploits

PHP Laravel Framework 5.5.40 / 5.6.x < 5.6.30 - token Unserialize Remote Command Execution (Metasploit)

Microsoft Windows 10 < build 17763 - AppXSvc Hard Link Privilege Escalation (Metasploit)

Microsoft Compiled HTML Help / Uncompiled .chm File - XML External Entity Injection

DameWare Remote Support 12.0.0.509 - 'Host' Buffer Overflow (SEH)

CentOS Control Web Panel 0.9.8.838 - User Enumeration

CentOS Control Web Panel 0.9.8.836 - Privilege Escalation

CentOS Control Web Panel 0.9.8.836 - Authentication Bypass

R 3.4.4 (Windows 10 x64) - Buffer Overflow SEH (DEP/ASLR Bypass)

Pixaal sql injection

CISCO Small Business 200 / 300 / 500 Switches Multiple Vulnerabilities

FlightPath < 4.8.2 / < 5.0-rc2 Local File Inclusion

SAP Gateway versions 7.53 and SAPUI5 1.0.0 is vulnerable to Content Spoofing in multiples parameters

ExpressVPN - Unquoted Service Path Privilege Escalation

Sitecore 9.0 Rev 171002 Cross Site Scripting

SNMPc Enterprise Edition 9 / 10 Mapping Filename Buffer Overflow

Microsoft DirectWrite / AFDKO dnaGrow Insufficient Integer Overflow Check

Xymon 4.3.25 useradm Command Execution Metasploit

Sahi pro 8.x Directory Traversal

FlightPath < 4.8.2 / < 5.0-rc2 - Local File Inclusion

Microsoft Windows Remote Desktop - 'BlueKeep' Denial of Service (Metasploit)