[] NeoSense
E X P L O I T S
title author type platform port cve id
Emmanuel Lujan ePowerSvc 6.0.3008.0 - 'ePowerSvc.exe' Unquoted Service Path
local windows
Erick Galindo DiskBoss Service 12.2.18 - 'diskbsa.exe' Unquoted Service Path
local windows
Ismael Nava iDailyDiary 4.30 - Denial of Service (PoC)
dos windows
Emir Polat Schlix CMS 2.2.6-6 - Arbitary File Upload (Authenticated)
webapps multiple
legend Solaris SunSSH 11.0 x86 - libpam Remote Root (2)
remote solaris CVE-2020-14871
mekhalleh Microsoft Exchange 2019 - Unauthenticated Email Download (Metasploit)
webapps windows CVE-2021-26855
Mansoor R WordPress Plugin WP Statistics 13.0.7 - Time-Based Blind SQL Injection (Unauthenticated)
webapps php
Paolo Stagno DELL dbutil_2_3.sys 2.3 - Arbitrary Write to Local Privilege Escalation (LPE)
local windows CVE-2021-21551
BestEffort Team Mozilla Firefox 88.0.1 - File Extension Execution of Arbitrary Code
local windows
nu11secur1ty Spotweb 1.4.9 - DOM Based Cross-Site Scripting (XSS)
webapps multiple
Emmanuel Lujan Acer Updater Service 1.2.3500.0 - 'UpdaterService.exe' Unquoted Service Path
local windows
Emmanuel Lujan Backup Manager Module 3.0.0.99 - 'IScheduleSvc.exe' Unquoted Service Path
local windows
Alejandra Sánchez ASUS HID Access Service 1.0.94.0 - 'AsHidSrv.exe' Unquoted Service Path
local windows
Rohit Burke COVID19 Testing Management System 1.0 - 'Admin name' Cross-Site Scripting (XSS)
webapps php
Rohit Burke COVID19 Testing Management System 1.0 - SQL Injection (Auth Bypass)
webapps php
Metin Yunus Kandemir ManageEngine ADSelfService Plus 6.1 - CSV Injection
webapps multiple
page: 154/3001 [exploits: 48015]
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.