WordPress Music Store 1.0.41 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
WordPress Music Store plugin version 1.0.41 suffers from a cross site scripting vulnerability.
Archive for March, 2016
WordPress Visual Form Builder 2.8.6 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
WordPress Visual Form Builder plugin version 2.8.6 suffers from a cross site scripting vulnerability.
WordPress IMDb Profile Widget 1.0.8 Local File Inclusion
Posted by deepcore under exploit (No Respond)
WordPress IMDb Profile Widget plugin version 1.0.8 suffers from a local file inclusion vulnerability.
WordPress Photocart Link 1.6 Local File Inclusion
Posted by deepcore under exploit (No Respond)
WordPress Photocart Link plugin version 1.6 suffers from a local file inclusion vulnerability.
Trend Micro Deep Discovery Inspector 3.7 / 3.8 CSRF
Posted by deepcore under exploit (No Respond)
Trend Micro Deep Discovery versions 3.7 and 3.8 suffer from multiple cross site request forgery vectors. If an authenticated user visits a malicious webpage attackers will have ability to modify many settings of the Deep Discovery application to that of the attackers choosing.
TallSoft SNMP TFTP Server 1.0.0 Denial Of Service
Posted by deepcore under exploit (No Respond)
TallSoft SNMP TFTP server version 1.0.0 suffers from a denial of service vulnerability.
Cogent Datahub 7.3.9 Privilege Escalation
Posted by deepcore under exploit (No Respond)
Cogent Datahub versions 7.3.9 and below suffer from a gamma script elevation of privilege vulnerability.
[remote] – Adobe Flash – Object.unwatch Use-After-Free Exploit
Posted by deepcore under Security (No Respond)
[webapps] – Trend Micro Deep Discovery Inspector 3.8, 3.7 – CSRF Vulnerabilities
Posted by deepcore under Security (No Respond)
[webapps] – Liferay Portal 5.1.2 – Persistent XSS
Posted by deepcore under Security (No Respond)