[webapps] – WordPress Uncode Theme 1.3.1 – Arbitrary File Upload
Posted by deepcore under Security (No Respond)
Archive for June, 2016
[webapps] – WordPress Double Opt-In for Download Plugin 2.0.9 – SQL Injection
Posted by deepcore under Security (No Respond)
[webapps] – Electroweb Online Examination System 1.0 – SQL Injection
Posted by deepcore under Security (No Respond)
Joomla Jumi 3.0.5 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Joomla Jumi component version 3.0.5 suffers from a cross site scripting vulnerability.
IBM Cognos 11.0 Content Spoofing
Posted by deepcore under exploit (No Respond)
IBM Cognos version 11.0 suffers from a content spoofing vulnerability.
Notilus 2012 R3 SQL Injection
Posted by deepcore under exploit (No Respond)
Notilus version 2012 R3 suffers from a remote SQL injection vulnerability.
WordPress WP Mobile Detector 3.5 Shell Upload
Posted by deepcore under exploit (No Respond)
WordPress WP Mobile Detector plugin versions 3.5 and below suffer from a remote shell upload vulnerability.
WordPress Realia 0.8.5 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
WordPress Realia plugin version 0.8.5 suffers from a cross site scripting vulnerability.
Magento 2.0.6 Unserialize Remote Code Execution
Posted by deepcore under exploit (No Respond)
This Metasploit module exploits a PHP object injection vulnerability in Magento 2.0.6 or prior.
http://www.dongyenmd.go.th/eg.htm
Posted by deepcore under Security (No Respond)
http://www.dongyenmd.go.th/eg.htm notified by Dr.SiLnT HilL
Tags: defacement