Subscribe via feed.
Archive for May, 2016

Oracle ATS Arbitrary File Upload

Posted by deepcore under exploit (No Respond)

This Metasploit module exploits an authentication bypass and arbitrary file upload in Oracle Application Testing Suite (OATS), version 12.4.0.2.0 and unknown earlier versions, to upload and execute a JSP shell.

http://dutai.go.th/by.htm

Posted by deepcore under Security (No Respond)

http://dutai.go.th/by.htm notified by GeNErAL

Tags:

[remote] – PowerFolder Server 10.4.321 – Remote Code Execution

Posted by deepcore under Security (No Respond)

PowerFolder Server 10.4.321 – Remote Code Execution

Tags: ,

[remote] – Oracle ATS Arbitrary File Upload

Posted by deepcore under Security (No Respond)

Oracle ATS Arbitrary File Upload

Tags: ,

[remote] – Ubiquiti airOS Arbitrary File Upload

Posted by deepcore under Security (No Respond)

Ubiquiti airOS Arbitrary File Upload

Tags: ,

http://www.piangluang.go.th/by.htm

Posted by deepcore under Security (No Respond)

http://www.piangluang.go.th/by.htm notified by GeNErAL

Tags:

http://www.pth.go.th/by.htm

Posted by deepcore under Security (No Respond)

http://www.pth.go.th/by.htm notified by GeNErAL

Tags:

Teampass v2.1.26 – Stored Cross Site Scripting Vulnerability

Posted by deepcore under exploit (No Respond)

An independent vulnerability laboratory researcher discovered an application-side cross site scripting vulnerability in the Teampass v2.1.25/26 application.

Postfix Admin 2.93 Cross Site Request Forgery

Posted by deepcore under exploit (No Respond)

Postfix Admin version 2.93 suffers from a cross site request forgery vulnerability.

Collectd-Web 0.4.0 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

Collectd-Web version 0.4.0 suffers from a cross site scripting vulnerability.