Subscribe via feed.
Archive for November, 2015

Celoxis 9.5 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

Celoxis versions 9.5 and below suffer from a cross site scripting vulnerability.

SAP NetWeaver 7.4 XXE Injection

Posted by deepcore under exploit (No Respond)

SAP NetWeaver version 7.4 suffers from an XML external entity injection vulnerability.

SAP Mobile Platform 2.3 XXE Injection

Posted by deepcore under exploit (No Respond)

SAP Mobile Platform version 2.3 suffers from an XML external entity injection vulnerability.

SoundTap 2.27 – Code Execution Vulnerability

Posted by deepcore under exploit (No Respond)

An independent vulnerability laboratory researcher discovered a code execution vulnerability in the official SoundTap v2.27 software.

Switch v4.68 – Code Execution Vulnerability

Posted by deepcore under exploit (No Respond)

An independent vulnerability laboratory researcher discovered a code execution vulnerability in the official Switch v4.68 software.

Vbulletin 5.x – Remote Code Execution Exploit (PL)

Posted by deepcore under exploit (No Respond)

An independent vulnerability laboratory researcher discovered a remote code execution exploit for the vbulletin v5.x forum web-application.

[webapps] – WP-Client 3.8.7 – Stored XSS Vulnerability

Posted by deepcore under Security (No Respond)

WP-Client 3.8.7 – Stored XSS Vulnerability

Tags: ,

[dos] – Oracle Outside In PDF 8.5.2 – Parsing Memory Corruption Vulnerability

Posted by deepcore under Security (No Respond)

Oracle Outside In PDF 8.5.2 – Parsing Memory Corruption Vulnerability

Tags: ,

[dos] – Windows ndis.sys IOCTL 0x170034 (ndis!ndisNsiGetIfNameForIfIndex) – Pool Buffer Overflow (MS15-117)

Posted by deepcore under Security (No Respond)

Windows ndis.sys IOCTL 0x170034 (ndis!ndisNsiGetIfNameForIfIndex) – Pool Buffer Overflow (MS15-117)

Tags: ,

[webapps] – vBulletin 5.x – Remote Code Execution Exploit

Posted by deepcore under Security (No Respond)

vBulletin 5.x – Remote Code Execution Exploit

Tags: ,