Archive

file delete file write java local file disclosure object injection php rce sql injection xml dos xss xxe

LH-EHR Authenticated Unrestricted File Deletion – August 7, 2018

LH-EHR RCE Via Picture Upload – September 3, 2018
LH-EHR Authenticated Unrestricted File Write – August 7, 2018
LH-EHR Authenticated Unrestricted File Write in letter.php – August 7, 2018
LH-EHR Authenticated Unrestricted File Write in letter.php - (2) – August 7, 2018

XR3Player XXE – October 28, 2018
UML Designer XXE – October 28, 2018
RunElite XXE – October 28, 2018
MegaMek Java Objection Injection – October 28, 2018
K9Mail XXE – October 28, 2018
HAPI FHIR XXE – October 28, 2018
Frostwire XXE – October 28, 2018
FreeCol XXE – October 28, 2018
BW Calendar Engine XXE – October 28, 2018
Autopsy XXE – October 28, 2018
Anyplace XXE – October 28, 2018
KeePassDX XXE – October 28, 2018
Neo4j Apoc Procedures XXE – October 27, 2018
MicroMathematics XXE – October 27, 2018
Codelibs Fess XXE – October 27, 2018
Exist XXE – October 27, 2018
Stroom XXE – August 8, 2018
XXE vulnerability in JabRef MsBibImporter – August 8, 2018
Eclipse RDF4j XXE – August 5, 2018
LatexDraw XXE – August 5, 2018
Netbeans MMD Plugin XXE – June 2, 2018
TripleA XXE – May 31, 2018
UMLet XXE – April 23, 2018

LH-EHR Authenticated Local File disclosure – August 5, 2018
LMS Local File Disclosure – June 1, 2018

ZoneMinder PHP Objection Injection – October 28, 2018
ZoneMinder PHP Objection Injection (2) – October 28, 2018
UBilling PHP Objection Injection – October 28, 2018
MegaMek Java Objection Injection – October 28, 2018
YesWiki PHP Objection Injection – August 5, 2018
OpenPSA PHP Objection Injection – May 31, 2018
Froxlor PHP Objection Injection – May 31, 2018

ZoneMinder PHP Objection Injection – October 28, 2018
ZoneMinder PHP Objection Injection (2) – October 28, 2018
UBilling PHP Objection Injection – October 28, 2018
Microweber XSS – October 28, 2018
LH-EHR RCE Via Picture Upload – September 3, 2018
LH-EHR Authenticated Unrestricted SQL Injection – August 8, 2018
LH-EHR Authenticated Unrestricted File Write – August 7, 2018
LH-EHR Authenticated Unrestricted File Write in letter.php – August 7, 2018
LH-EHR Authenticated Unrestricted File Write in letter.php - (2) – August 7, 2018
LH-EHR Authenticated Unrestricted File Deletion – August 7, 2018
LH-EHR Authenticated Local File disclosure – August 5, 2018
YesWiki PHP Objection Injection – August 5, 2018
OpenCart-Overclocked Reflected XSS – August 5, 2018
FlightAirMap Reflected XSS – August 5, 2018
OpenPSA XML Denial of Service – June 1, 2018
LMS Local File Disclosure – June 1, 2018
OpenPSA PHP Objection Injection – May 31, 2018
Froxlor PHP Objection Injection – May 31, 2018

LH-EHR RCE Via Picture Upload – September 3, 2018

LH-EHR Authenticated Unrestricted SQL Injection – August 8, 2018

OpenPSA XML Denial of Service – June 1, 2018

Microweber XSS – October 28, 2018
OpenCart-Overclocked Reflected XSS – August 5, 2018
FlightAirMap Reflected XSS – August 5, 2018

XR3Player XXE – October 28, 2018
UML Designer XXE – October 28, 2018
RunElite XXE – October 28, 2018
K9Mail XXE – October 28, 2018
HAPI FHIR XXE – October 28, 2018
Frostwire XXE – October 28, 2018
FreeCol XXE – October 28, 2018
BW Calendar Engine XXE – October 28, 2018
Autopsy XXE – October 28, 2018
Anyplace XXE – October 28, 2018
KeePassDX XXE – October 28, 2018
Neo4j Apoc Procedures XXE – October 27, 2018
MicroMathematics XXE – October 27, 2018
Codelibs Fess XXE – October 27, 2018
Exist XXE – October 27, 2018
Stroom XXE – August 8, 2018
XXE vulnerability in JabRef MsBibImporter – August 8, 2018
Eclipse RDF4j XXE – August 5, 2018
LatexDraw XXE – August 5, 2018
Netbeans MMD Plugin XXE – June 2, 2018
TripleA XXE – May 31, 2018
UMLet XXE – April 23, 2018