Vuln Analysis

0day = Original discovery
Nday = Discovered by other

Jun 20 2021 - 0day
Place holder : Waiting for disclosure.

Sep 14 2020 - 0day
Github : Httping Multiple Stack Buffer Overflows in create_http_request_header(Author deleted repository after report: see snapshot 1 and 2 for history)

Mar 21 2020 - 0day
ZVE-2020-0632 : ZOHO ManageEngine Applications Manager 14 FileUploadServlet Remote Code Execution

Mar 21 2020 - 0day
ZVE-2020-0631 : ZOHO ManageEngine Applications Manager 14 Ping Monitor System Command Injection

Dec 12 2019 - 0day
CVE-2020-10859 : ZOHO ManageEngine Desktop Central 10 validateAndUploadMultipleDependencies Vulnerability

Dec 16 2019 - 0day
Place holder : VLC - still vulnerable.

Oct 04 2019 - Nday
CVE-2019-16928: Exim EHLO Heap Overflow Vulnerability

Oct 01 2019 - Nday
CVE-2019-15142: DjVuLibre UTF8 Out-of-Bound Read Vulnerability

Sep 25 2019 - Nday
CVE-2019-15954: Total.js CMS 12 Widget Remote Code Execution

Sep 12 2019 - Nday
CVE-2018-14054: LibMP4v2 MP4StringProperty Handling Double Free Vulnerability

Jul 18 2019 - Nday
CVE-2018-18492: Mozilla Firefox Select Element Use-After-Free

Jun 23 2019 - Nday
CVE-2019-0232: Apache Tomcat CGI Servlet enableCmdLineArguments Vulnerability

Jun 10 2019 - Nday
Cisco Prime Infrastructure runshell Local Privilege Escalation

May 28 2019 - Nday
CVE-2019-9692: CMS Made Simple (CMSMS) Showtime2 Post Auth Arbitrary File Upload

May 23 2019 - Nday
CVE-2019-1821: Cisco Prime Infrastructure Archive Traversal

May 20 2019 - Nday
CVE-2017-10271: Oracle WebLogic Server AsyncResponseService Deserialization

May 12 2019 - Nday
CVE-2019-8903: Total.js requestcontinue Directory Traversal

May 03 2019 - Nday
CVE-2019-2557: Oracle Application Testing Suite DownloadServlet Directory Traversal

Apr 23 2019 - Nday
CVE-2019-5420: Ruby on Rails DoubleTap Development Mode secret_key_base Vulnerability

Apr 23 2019 - Nday
CVE-2019-5418: Ruby on Rails DoubleTap Directory Traversal

Mar 26 2019 - Nday
Q1 2019 Dev Diaries (MailCleaner, Apache Spari, Jira)

Jan 14 2019 - Nday
CVE-2018-11770: Apache Spark CreateSubmissionRequest

Jan 10 2019 - Nday
CVE-2018-20323: MailCleaner SOAP API Logs_StartTrace Command Injection

Jan 10 2019 - Nday
Jira Universal Plugin Manager PluginCollectionResource Class Upload Vulnerability

Jan 03 2018 - Nday
Rails Deserialization Code Execution

Dec 14 2015 - 0day
CVE-2015-8249: ManageEngine FileUploadServlet Vulnerability

Nov 30 2015 - 0day
Oracle Beehive PrepareAudioToPlay Vulnerability