2011

Integer overflow in ImageIO in Apple Mac OS X before 10.6.7 via a crafted XBM image (CVE-2011-0181) [Sample]

Heap-based buffer overflow in Apple Type Services (ATS) in Apple Mac OS X before 10.6.8 via a crafted embedded TrueType font (CVE-2011-0198) [Sample]

Off-by-one error in the CoreFoundation framework in Apple Mac OS X before 10.6.8 via a CFString object (CVE-2011-0201) [Sample]

Heap-based buffer overflow in ImageIO in Apple Mac OS X before 10.6.8 via a crafted JPEG2000 image (CVE-2011-0205) [Sample]

Heap memory corruption in VLC (VideoLAN) via crafted USF subtitles in an MKV file (CVE-2011-0522)

2013

Hackabi (Matriculation Examination Board hacking contest) submission (CVE-2013-1446)

2014

ASUS router drive-by code execution via XSS and authentication bypass (CVE-2014-1225 et all) [PoC]

OS X Lock Screen Race Condition Security Vulnerability (CVE-2014-4438) [Video]

2015

QNAP QTS weak sessionid generation

2016

SilverCrest SWS-A1 Wi-Fi Power Socket multiple vulnerabilities (video)

Serious security threat in AfterPay bracelet payment

Inteno router CWMP Certificate Validation Vulnerability

Unauthenticated Remote Code Execution as root in NovaBACKUP DataCenter (Hiback) (CVE-2016-4898, CVE-2016-4899)

POINTYFEATHER / tar extract pathname bypass (CVE-2016-6321) [PoC]

Multiple Vulnerabilities (including RCE as root) in QNAP QTS 4.2.x [slides] [video]

2017

Multiple Vulnerabilities (including unauthenticated RCE as root) in QNAP QTS 4.2.x (CVE-2017-6361, CVE-2017-6360, CVE-2017-6359)

Multiple Vulnerabilities (including authenticated RCE as root) in Foscam cameras (CVE-2018-19063, CVE-2018-19064, CVE-2018-19065, CVE-2018-19066, CVE-2018-19067, CVE-2018-19068, CVE-2018-19070, CVE-2018-19071, CVE-2018-19072, CVE-2018-19073, CVE-2018-19074, CVE-2018-19075, CVE-2018-19076, CVE-2018-19077, CVE-2018-19078, CVE-2018-19079, CVE-2018-19080, CVE-2018-19081 and CVE-2018-19082) (advisory)

Local Privilege Escalation to root in aws-cfn-bootstrap (CVE-2017-9450)

2018

Intel(R) Active Management Technology MEBx Bypass [video]

GNU Wget Cookie Injection (CVE-2018-0494)

MagniComp SysInfo Information Exposure (CVE-2018-7268)

foilChat sign up email PIN confirmation bypass

libcurl SASL password overflow via integer overflow (CVE-2018-16839)

Unauthenticated Remote Code Execution as root in ...

...