Work in progress to gather and collect all the various vulns I’ve found over the years. Unlikely to ever be complete.

2017

  • pgAdmin 4 - XSS leading to RCE

2016

2014

  • CVE-2014-0030 - Apache Roller XML-RPC susceptible to XXE Attacks

2012

  • npm Registry sha password exposure
  • OpenFire Code Execution
  • Nagios Enterprise Config Manager Log Persistent XSS
  • Nagios Enterprise XIWindow Reflected XSS
  • Pandora FMS 4.0.2 System Audit Log XSS

2010

2006

  • SYMSA1095 - Symantec Security Information Manager Authentication bypass
  • Symantec Enterprise Firewall Privilege Escalation

2005