Premjith MManageEngine Desktop Central RCE | CVE-2020–10189 | Deserialization VulnerabilityManageEngine Desktop Central is a unified endpoint management solution that helps in managing servers, laptops, desktops, smartphones, and…May 5, 2020May 5, 2020
Premjith MLiferay Portal RCE | CVE-2020–7961| JSON Web Service Deserialization |Unauthenticated RCE (Blind)Liferay Portal is a Java based CMS application, which is observed to be commonly used by many enterprises to manage their web content.Apr 20, 2020Apr 20, 2020
Premjith MNexus Repository Manger 3 RCE | CVE-2020–10204 | EL Injection |RCE (Blind)Nexus Repository Manager 3 (version below 3.21.1) is vulnerable to EL injection (Expression Language injection), which leads to Remote…Apr 14, 20201Apr 14, 20201
Premjith MGhostcat vulnerability | CVE-2020–1938 | AJP LFI | Apache Tomcat Server vulnerabilityWhat is AJP13 (Apache Jserv Protocol) Protocol?Apr 13, 2020Apr 13, 2020
Premjith MWebmin 0day remote code execution [CVE-2019–15107] | OS command injection | Unauthenticated RCEWebmin is a web-based interface for Unix system administration. Webmin removes the need to manually edit Unix configuration files like…Apr 11, 2020Apr 11, 2020
Premjith MRSA Archer XSS in File upload feature — Disowned by DELLHas responsible disclosure of security vulnerabilities worth the effort? Vulnerability research is an exciting journey, in which…Mar 20, 2020Mar 20, 2020