· Sahil Dhar

Apr 13, 2022 Zoho ManageEngine Log360 - Unauthenticated Remote Code Execution
Apr 12, 2022 Zoho ManageEngine O365 Manager Plus - Authenticated Command Injection
Apr 12, 2022 Zoho ManageEngine O365 Manager Plus - Admin Account Takeover Chain
Dec 3, 2021 Zoho ManageEngine CloudSecurityPlus - Remote Code Execution via Security Misconfiguration
Nov 21, 2021 Zoho ManageEngine Log360 - Remote Code Execution via BCP file overwrite
Nov 21, 2021 Zoho ManageEngine Log360 - Remote Code Execution via Arbitrary File Overwrite
Nov 21, 2021 Zoho ManageEngine Log360 - Remote Code Execution via Arbitrary File Upload
Jul 18, 2021 GdkPixbuf - Heap Buffer Overflow in lzw_decoder_new
Jul 22, 2020 Django CMS - Reflected XSS Vulnerability
May 5, 2020 CVE-2020-11531 DataSecurity Plus Xnode Server - Path Traversal Code Execution Vulnerability
May 5, 2020 CVE-2020-11532 DataSecurity Plus Xnode Server - Authentication Bypass Vulnerability
Apr 16, 2020 CVE-2020-8838 Manage Engine Asset Explorer Windows Agent - Remote Code Execution Vulnerability
Dec 22, 2019 CVE-2019-19034 Manage Engine Asset Explorer - Authenticated Command Execution Vulnerability
Jan 5, 2019 Unibox Wifi Access Controller - Multiple Remote Command Execution Vulnerabilities
Mar 17, 2018 CVE-2017-15719 Wicket jQuery UI XSS in WYSIWYG editor
Dec 23, 2017 CVE-2017-17827 Cross Site Request Forgery in Piwigo 2.9.2
Dec 23, 2017 CVE-2017-17825 Multiple Stored XSS Vulnerabilities in Piwigo 2.9.2
Dec 23, 2017 CVE-2017-17822 Multiple SQL Injection Vulnerabilities in Piwigo 2.9.2

Sahil Dhar Application Security and Exploitation all day everyday.