YesWiki 1 / 2 File Upload / Directory Traversal
Posted by deepcore under exploit (No Respond)
YesWiki versions 1 and 2 suffers from remote arbitrary file upload and directory traversal vulnerabilities.
Archive for December, 2015
SumatraPDF DLL Hijack
Posted by deepcore under exploit (No Respond)
SumatraPDF suffers from multiple DLL hijacking vulnerabilities.
VLC DLL Hijack
Posted by deepcore under exploit (No Respond)
The executable installer for the VideoLAN Client suffers from DLL hijacking vulnerabilities.
NSIS DLL Hijack
Posted by deepcore under exploit (No Respond)
The executable installer for Nullsoft Scriptable Install System suffers from DLL hijacking vulnerabilities.
JRSoft InnoSetup DLL Hijack
Posted by deepcore under exploit (No Respond)
JRSoft InnoSetup executable installers suffer from a DLL hijacking vulnerability.
PHP Utility Belt Remote Code Execution
Posted by deepcore under exploit (No Respond)
PHP Utility Belt suffers from a remote code execution vulnerability.
sysPass 1.1.2.23 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
sysPass versions 1.1.2.23 and below suffer from a cross site scripting vulnerability.
OpenMRS 2.3 (1.11.4) Local File Disclosure
Posted by deepcore under exploit (No Respond)
OpenMRS version 2.3 (1.11.4) suffers from a local file disclosure vulnerability.
OpenMRS 2.3 (1.11.4) Cross Site Scripting
Posted by deepcore under exploit (No Respond)
OpenMRS version 2.3 (1.11.4) suffers from multiple cross site scripting vulnerabilities.
OpenMRS 2.3 (1.11.4) Expression Language Injection
Posted by deepcore under exploit (No Respond)
OpenMRS version 2.3 (1.11.4) suffers from an expression language injection vulnerability that can lead to arbitrary java code being executed.
