Subscribe via feed.
Archive for July, 2016

PHP Planner 0.4 SQL Injection

Posted by deepcore under exploit (No Respond)

PHP Planner versions 0.4 and below suffer from a remote SQL injection vulnerability.

Joomla AI Contact Safe 2.0.20 Shell Upload / SQL Injection

Posted by deepcore under exploit (No Respond)

Joomla AI Contact Safe component version 2.0.20 suffers from remote shell upload and remote SQL injection vulnerabilities.

http://thainews.prd.go.th/centerweb/news/NewsDetail?NT01_NewsID=WNPOL5802100010014

Posted by deepcore under defacement (No Respond)

http://thainews.prd.go.th/centerweb/news/NewsDetail?NT01_NewsID=WNPOL5802100010014 notified by Mr.xSaputra_AttackeRx

Tags:

[shellcode] – Linux/x86 – execve /bin/sh Shellcode (19 bytes)

Posted by deepcore under Security (No Respond)

Linux/x86 – execve /bin/sh Shellcode (19 bytes)

Tags: ,

[webapps] – Django CMS 3.3.0 – (Editor Snippet) Persistent XSS

Posted by deepcore under Security (No Respond)

Django CMS 3.3.0 – (Editor Snippet) Persistent XSS

Tags: ,

[local] – Wowza Streaming Engine 4.5.0 – Local Privilege Escalation

Posted by deepcore under Security (No Respond)

Wowza Streaming Engine 4.5.0 – Local Privilege Escalation

Tags: ,

[webapps] – Wowza Streaming Engine 4.5.0 – Multiple XSS

Posted by deepcore under Security (No Respond)

Wowza Streaming Engine 4.5.0 – Multiple XSS

Tags: ,

[webapps] – Wowza Streaming Engine 4.5.0 – Remote Privilege Escalation

Posted by deepcore under Security (No Respond)

Wowza Streaming Engine 4.5.0 – Remote Privilege Escalation

Tags: ,

[remote] – Drupal RESTWS Module 7.x – Remote PHP Code Execution (Metasploit)

Posted by deepcore under Security (No Respond)

Drupal RESTWS Module 7.x – Remote PHP Code Execution (Metasploit)

Tags: ,

[webapps] – Wowza Streaming Engine 4.5.0 – Add Advanced Admin CSRF

Posted by deepcore under Security (No Respond)

Wowza Streaming Engine 4.5.0 – Add Advanced Admin CSRF

Tags: ,