Subscribe via feed.
Archive for March, 2016

D-Link DWR-932 Authentication Bypass / Password Disclosure

Posted by deepcore under exploit (No Respond)

D-Link DWR-932 with firmware versions 4.00 and below suffer from authentication bypass and password disclosure vulnerabilities.

AbsoluteTelnet 10.14 DLL Hijacking

Posted by deepcore under exploit (No Respond)

AbsoluteTelnet version 10.14 suffers from a DLL hijacking vulnerability.

http://www.nh.go.th/configuration.php

Posted by deepcore under Security (No Respond)

http://www.nh.go.th/configuration.php notified by HUNT3RXM

Tags:

DirectAdmin CP v1.50.0 – CS CSRF Web Vulnerability

Posted by deepcore under exploit (No Respond)

An independent vulnerability laboratory researcher discovered a client-side cross site request forgery web vulnerability in the DirectAdmin CP v1.50.0 control panel.

[webapps] – WordPress Dharma booking Plugin 2.38.3 – File Inclusion Vulnerability

Posted by deepcore under Security (No Respond)

WordPress Dharma booking Plugin 2.38.3 – File Inclusion Vulnerability

Tags: ,

[webapps] – WordPress Memphis Document Library Plugin 3.1.5 – Arbitrary File Download

Posted by deepcore under Security (No Respond)

WordPress Memphis Document Library Plugin 3.1.5 – Arbitrary File Download

Tags: ,

[webapps] – WordPress Brandfolder Plugin 3.0 – RFI / LFI Vulnerability

Posted by deepcore under Security (No Respond)

WordPress Brandfolder Plugin 3.0 – RFI / LFI Vulnerability

Tags: ,

[webapps] – WordPress HB Audio Gallery Lite Plugin 1.0.0 – Arbitrary File Download

Posted by deepcore under Security (No Respond)

WordPress HB Audio Gallery Lite Plugin 1.0.0 – Arbitrary File Download

Tags: ,

[webapps] – Joomla Easy Youtube Gallery 1.0.2 – SQL Injection Vulnerability

Posted by deepcore under Security (No Respond)

Joomla Easy Youtube Gallery 1.0.2 – SQL Injection Vulnerability

Tags: ,

http://www.trat.m-society.go.th

Posted by deepcore under Security (No Respond)

http://www.trat.m-society.go.th notified by Fr13nds

Tags: