10 - 2015 - :: Deepquest ::

[EXPLOIT]

>> Pligg CMS 2.0.2 CSRF / Code Execution

USER: deepcore // 2015-10-31 // 0 CMT

Pligg CMS version 2.0.2 suffers from code execution and cross site request forgery vulnerabilities.

[EXPLOIT]

>> Pligg CMS 2.0.2 Directory Traversal

USER: deepcore // 2015-10-31 // 0 CMT

Pligg CMS version 2.0.2 suffers from a directory traversal vulnerability.

[EXPLOIT]

>> Pligg CMS 2.0.2 SQL Injection

USER: deepcore // 2015-10-31 // 0 CMT

Pligg CMS version 2.0.2 suffers from multiple remote SQL injection vulnerabilities.

[EXPLOIT]

>> eBay Magento XXE Injection

USER: deepcore // 2015-10-31 // 0 CMT

eBay Magento CE versions 1.9.2.1 and below and eBay Magento EE versions 1.14.2.1 and below suffer from an XXE injection vulnerability.

[EXPLOIT]

>> PHP Server Monitor 3.1.1 Cross Site Request Forgery

USER: deepcore // 2015-10-31 // 0 CMT

PHP Server Monitor version 3.1.1 suffers from a cross site request forgery vulnerability.

[EXPLOIT]

>> PHP Server Monitor 3.1.1 Privilege Escalation

USER: deepcore // 2015-10-31 // 0 CMT

PHP Server Monitor version 3.1.1 suffers from a privilege escalation vulnerability.

[EXPLOIT]

>> Mozilla SETUP.EXE DLL Injection

USER: deepcore // 2015-10-30 // 0 CMT

Mozilla’s SETUP.exe suffers from a classic DLL injection vulnerability.

[EXPLOIT]

>> Joomla JNews SQL Injection

USER: deepcore // 2015-10-30 // 0 CMT

The Joomla JNews component suffers from a remote SQL injection vulnerability.

[EXPLOIT]

>> Oxwall 1.7.4 Cross Site Request Forgery

USER: deepcore // 2015-10-30 // 0 CMT

Oxwall version 1.7.4 suffers from a cross site request forgery vulnerability.

[EXPLOIT]

>> Libstagefright Integer Overflow Check Bypass

USER: deepcore // 2015-10-30 // 0 CMT

Libstagefright integer overflow checks can be bypassed with extended chunk lengths.

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this: