[webapps] – WordPress leenk.me Plugin 2.5.0 – CSRF/XSS
Posted by deepcore under Security (No Respond)
Archive for April, 2016
[webapps] – WordPress Kento Post View Counter Plugin 2.8 – CSRF/XSS
Posted by deepcore under Security (No Respond)
http://bdn.dmsc.moph.go.th/index.html
Posted by deepcore under Security (No Respond)
http://bdn.dmsc.moph.go.th/index.html notified by DrXx
Tags: defacementhttp://namvan.go.th
Posted by deepcore under Security (No Respond)
http://namvan.go.th notified by MuhmadEmad
Tags: defacementhttp://bangtoey.go.th
Posted by deepcore under Security (No Respond)
http://bangtoey.go.th notified by MuhmadEmad
Tags: defacementhttp://romyenck.go.th
Posted by deepcore under Security (No Respond)
http://romyenck.go.th notified by MuhmadEmad
Tags: defacementAussie Hackers Free To Bring Zero Days Overseas Under Wassenaar?
Posted by deepcore under exploit (No Respond)
C & C++ for OS – Filter Bypass & Persistent Vulnerability
Posted by deepcore under exploit (No Respond)
The vulnerability laboratory core research team discovered an application-side validation vulnerability in the official C & C++ for OS web-application (api).
Direct Admin v1.50.0 – CS Cross Site Scripting Vulnerabilities
Posted by deepcore under exploit (No Respond)
An independent vulnerability laboratory researcher discovered multiple client-side cross site scripting vulnerabilities in the official Direct Admin v1.50.0 hosting panel web-application.
OpenWGA Developer Studio 3.1.0 OpenDialog Arbitrary Code Execution
Posted by deepcore under exploit (No Respond)
OpenWGA Developer Studio version 3.1.0 suffers from an arbitrary code execution vulnerability when using the File OpenDialog box enabling the attacker to execute any binary he or she chooses including elevation of privileges.