[webapps] Zabbix 5.0.17 - Remote Code Execution (RCE) (Authenticated)
Zabbix 5.0.17 - Remote Code Execution (RCE) (Authenticated)
https://www.exploit-db.com/exploits/50816

[local] BattlEye 0.9 - 'BEService' Unquoted Service Path
BattlEye 0.9 - 'BEService' Unquoted Service Path
https://www.exploit-db.com/exploits/50815

[remote] Tdarr 2.00.15 - Command Injection
Tdarr 2.00.15 - Command Injection
https://www.exploit-db.com/exploits/50822

[remote] Seowon SLR-120 Router - Remote Code Execution (Unauthenticated)
Seowon SLR-120 Router - Remote Code Execution (Unauthenticated)
https://www.exploit-db.com/exploits/50821

[local] VIVE Runtime Service - 'ViveAgentService' Unquoted Service Path
VIVE Runtime Service - 'ViveAgentService' Unquoted Service Path
https://www.exploit-db.com/exploits/50824

[webapps] Baixar GLPI Project 9.4.6 - SQLi
Baixar GLPI Project 9.4.6 - SQLi
https://www.exploit-db.com/exploits/50823

[webapps] Moodle 3.11.5 - SQLi (Authenticated)
Moodle 3.11.5 - SQLi (Authenticated)
https://www.exploit-db.com/exploits/50825

[webapps] Tiny File Manager 2.4.6 - Remote Code Execution (RCE)
Tiny File Manager 2.4.6 - Remote Code Execution (RCE)
https://www.exploit-db.com/exploits/50828

[remote] Hikvision IP Camera - Backdoor
Hikvision IP Camera - Backdoor
https://www.exploit-db.com/exploits/50827

[webapps] Pluck CMS 4.7.16 - Remote Code Execution (RCE) (Authenticated)
Pluck CMS 4.7.16 - Remote Code Execution (RCE) (Authenticated)
https://www.exploit-db.com/exploits/50826

[remote] Apache APISIX 2.12.1 - Remote Code Execution (RCE)
Apache APISIX 2.12.1 - Remote Code Execution (RCE)
https://www.exploit-db.com/exploits/50829

[webapps] Wordpress Plugin iQ Block Country 1.2.13 - Arbitrary File Deletion via Zip Slip (Authenticated)
Wordpress Plugin iQ Block Country 1.2.13 - Arbitrary File Deletion via Zip Slip (Authenticated)
https://www.exploit-db.com/exploits/50830

[webapps] ICEHRM 31.0.0.0S - Cross-site Request Forgery (CSRF) to Account Takeover
ICEHRM 31.0.0.0S - Cross-site Request Forgery (CSRF) to Account Takeover
https://www.exploit-db.com/exploits/50831

[remote] Ivanti Endpoint Manager 4.6 - Remote Code Execution (RCE)
Ivanti Endpoint Manager 4.6 - Remote Code Execution (RCE)
https://www.exploit-db.com/exploits/50833

[remote] iRZ Mobile Router - CSRF to RCE
iRZ Mobile Router - CSRF to RCE
https://www.exploit-db.com/exploits/50832

[remote] ICT Protege GX/WX 2.08 - Client-Side SHA1 Password Hash Disclosure
ICT Protege GX/WX 2.08 - Client-Side SHA1 Password Hash Disclosure
https://www.exploit-db.com/exploits/50836

[remote] ICT Protege GX/WX 2.08 - Stored Cross-Site Scripting (XSS)
ICT Protege GX/WX 2.08 - Stored Cross-Site Scripting (XSS)
https://www.exploit-db.com/exploits/50835

[local] Sysax FTP Automation 6.9.0 - Privilege Escalation
Sysax FTP Automation 6.9.0 - Privilege Escalation
https://www.exploit-db.com/exploits/50834

[local] ProtonVPN 1.26.0 - Unquoted Service Path
ProtonVPN 1.26.0 - Unquoted Service Path
https://www.exploit-db.com/exploits/50837

[webapps] WordPress Plugin amministrazione-aperta 3.7.3 - Local File Read - Unauthenticated
WordPress Plugin amministrazione-aperta 3.7.3 - Local File Read - Unauthenticated
https://www.exploit-db.com/exploits/50838