Subscribe via feed.
Archive for January, 2016

Ipswitch MOVEit Mobile 1.2.0.962 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

Ipswitch MOVEit Mobile versions 1.2.0.962 and below suffer from a reflective cross site scripting vulnerability.

Ipswitch MOVEit DMZ 8.1 Information Disclosure

Posted by deepcore under exploit (No Respond)

Ipswitch MOVEit DMZ versions 8.1 and below suffer from an information disclosure vulnerability.

Log2Space Central 6.2 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

Log2Space Central version 6.2 suffers from multiple reflective cross site scripting vulnerabilities.

Netgear GS105Ev2 Authentication Bypass / XSS / CSRF

Posted by deepcore under exploit (No Respond)

The Netgear GS105Ev2 gigabit switch suffers from authentication bypass, cross site request forgery, cross site scripting, and various other vulnerabilities.

Apple Watch Denial Of Service

Posted by deepcore under Apple (No Respond)

Apple Watch suffers from a denial of service vulnerability.

Tags: , ,

[shellcode] – x86_64 Linux shell_reverse_tcp with Password – Polymorphic Version

Posted by deepcore under Security (No Respond)

x86_64 Linux shell_reverse_tcp with Password – Polymorphic Version

Tags: ,

[webapps] – ProjectSend r582 – Multiple Vulnerabilities

Posted by deepcore under Security (No Respond)

ProjectSend r582 – Multiple Vulnerabilities

Tags: ,

New Era Company CMS – (id) SQL Injection Vulnerability

Posted by deepcore under exploit (No Respond)

An independent vulnerability laboratory research group discovered a sql injection web vulnerability in the official New Era Company content management system (2016-Q1).

Trend Micro Direct Pass – Bypass & Persistent Vulnerability

Posted by deepcore under exploit (No Respond)

Trend Micro Direct Pass – Bypass & Persistent Vulnerability

Posted by deepcore under exploit (No Respond)

An independent vulnerability laboratory researcher discovered a filter bypass and persistent vulnerability in the official Trend Micro DirectPass web-application.