Riello UPS systems can have their restricted configuration shell bypassed to gain full underlying operating system access.
6ef7e8370834a1f65507385ad2f9fb981e57f39aa18bf52ca3a727aaa3955839
10-Strike Network Inventory Explorer versions 9.3 and below are vulnerable to a SEH based buffer overflow which leads to code execution or local privilege escalation. The vulnerable part of the program is the functionality to add computers from a text file.
1dff0a8ce3b87274d21f80b9363b6ad6aff3966452e9561847b4d6b7d6caeac4
Remote command execution exploit for Zenitel AlphaCom XE Audio Server versions up to 11.2.3.10 which have a web interface called AlphaWeb XE that allows for a remote shell upload.
74d530912782b4d1135f22f7bda97ec701c5233933221a5a7b8aa9b09cd95217
Zenitel AlphaCom XE Audio Server versions up to 11.2.3.10 have a web interface called AlphaWeb XE that allows for a remote shell upload.
db3e0721685ee34c318d514cffb76f972c85d297a6080f1d2a9693cb1d01d628
Zoho ManageEngine ServiceDesk Plus version 9.4 suffers from a user enumeration vulnerability.
870a1afb9f1433380867e92d6f4b12a310e6ee87a00b11040bf6cfbd0e03d858
Textpattern CMS version 4.8.3 remote code execution exploit.
5d72f66d478a2984ca653c4a364a7b05f0376f43326f5771233c541c2b4d625f
Online Marriage Registration System (OMRS) version 1.0 remote code execution exploit. Original discovery of remote code execution in this version was discovered by Selim Enes Karaduman in June of 2020.
0b988c57a1f19668b972345f07ad174bcbd8fba23062032536f90e7035468ee9
Jalios JCMS 10 allows attackers to access any part of the website and the WebDAV server with administrative privileges via a backdoor account using any username and a specific password.
4829f8ae23e18fce86bba81501fecaf37b995626d52f739665df9e76cff8be4a