[webapps] – Airia – (Add content) CSRF
Posted by deepcore under Security (No Respond)
Archive for June, 2016
[shellcode] – Windows XP – 10 – Download & Execute Shellcode
Posted by deepcore under Security (No Respond)
[webapps] – sNews CMS 1.7.1 – Multiple Vulnerabilities
Posted by deepcore under Security (No Respond)
[local] – Tomabo MP4 Player 3.11.6 – SEH Based Stack Overflow (msf)
Posted by deepcore under Security (No Respond)
[webapps] – WordPress Ultimate Product Catalog Plugin 3.8.1 – Privilege Escalation
Posted by deepcore under Security (No Respond)
Adobe Flash Player DLL Hijacking
Posted by deepcore under exploit (No Respond)
Adobe Flash Player versions prior to 22.0.0.192 and 18.0.0.360 suffer from a DLL hijacking vulnerability.
Tiki Wiki CMS Calendar Remote Code Execution
Posted by deepcore under exploit (No Respond)
Tiki Wiki CMS Calendar versions 14.2, 12.5 LTS, 9.11 LTS, and 6.15 suffer from a remote code execution vulnerability.
phpATM 1.32 Remote Command Execution / Shell Upload
Posted by deepcore under exploit (No Respond)
phpATM version 1.32 suffers from a remote shell upload vulnerability.
Microsoft Internet Explorer 11 Garbage Collector Attribute Type Confusion
Posted by deepcore under exploit (No Respond)
With MS16-063, Microsoft has patched CVE-2016-0199 which relates to a memory corruption bug in the garbage collector of the JavaScript engine used in Internet Explorer 11.
WordPress Gravity Forms 1.8.19 Shell Upload
Posted by deepcore under exploit (No Respond)
WordPress Gravity Forms plugin version 1.8.19 suffers from a remote shell upload vulnerability.