Ivan Spiridonov WooCommerce Customers Manager 29.4 - Post-Authenticated SQL Injection
webapps multiple CVE-2024-0399

Ivan Spiridonov Smart Manager 8.27.0 - Post-Authenticated SQL Injection
webapps php CVE-2024-0566

Ivan Spiridonov BWL Advanced FAQ Manager 2.0.3 - Authenticated SQL Injection
webapps php

Miguel Redondo htmlLawed 1.2.5 - Remote Code Execution (RCE)
webapps php CVE-2022-35914

Peter Gabaldon LaborOfficeFree 19.10 - MySQL Root Password Calculator
local windows

Ivan Spiridonov EasyNas 1.1.0 - OS Command Injection
remote hardware CVE-2023-0830

Brandon Marshall System Mechanic v15.5.0.61 - Arbitrary Read/Write
local windows CVE-2018-5701

Brandon Roach Teleport v10.1.1 - Remote Code Execution (RCE)
remote multiple CVE-2022-36633

sudoninja Bus Pass Management System 1.0 - 'viewid' Insecure direct object references (IDOR)
webapps php

Felipe Prates Donato Ovidentia 6 - 'id' SQL injection (Authenticated)
webapps php

Todor Donev Aptina AR0130 960P 1.3MP Camera - Remote Configuration Disclosure
webapps hardware

Todor Donev I6032B-P POE 2.0MP Outdoor Camera - Remote Configuration Disclosure
webapps hardware

Todor Donev SecuSTATION SC-831 HD Camera - Remote Configuration Disclosure
webapps hardware

Todor Donev SecuSTATION IPCAM-130 HD Camera - Remote Configuration Disclosure
webapps hardware

Todor Donev ESCAM QD-900 WIFI HD Camera - Remote Configuration Disclosure
webapps hardware

Todor Donev DBPower C300 HD Camera - Remote Configuration Disclosure
webapps hardware