MoneyTrackin Cross Site Scripting
Posted by deepcore under exploit (No Respond)
MoneyTrackin suffers from multiple cross site scripting vulnerabilities. The author has emailed the vendor repeatedly with no response.
Archive for July, 2016
LearnVest Cross Site Scripting
Posted by deepcore under exploit (No Respond)
LearnVest suffers from a persistent cross site scripting vulnerability. The author has emailed the vendor repeatedly with no response.
Joomla XMap 2.3.4 SQL Injection
Posted by deepcore under exploit (No Respond)
Joomla XMap component version 2.3.4 suffers from a remote SQL injection vulnerability.
The Realm / Dashgum Software CMS 1.0.1 SQL Injection
Posted by deepcore under exploit (No Respond)
The Realm / Dashgum Software CMS version 1.0.1 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Joomla Branch 3.0 SQL Injection
Posted by deepcore under exploit (No Respond)
Joomla Branch component version 3.0 suffers from a remote SQL injection vulnerability.
WordPress Live Chat Support 6.2.00 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
WordPress Live Chat Support plugin version 6.2.00 suffers from a persistent cross site scripting vulnerability.
WordPress Activity Log 2.3.1 Persistent Cross Site Scripting
Posted by deepcore under exploit (No Respond)
WordPress Activity Log plugin version 2.3.1 suffers from a cross site scripting vulnerability.
Tiki Wiki CMS 15.0 Arbitrary File Download
Posted by deepcore under exploit (No Respond)
Tiki Wiki CMS version 15.0 suffers from an arbitrary file download vulnerability.
WordPress All In One SEO Pack 2.3.6.1 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
WordPress All In One SEO Pack plugin version 2.3.6.1 suffers from a persistent cross site scripting vulnerability.
Bug Tracker 2.7.1 Information Disclosure
Posted by deepcore under exploit (No Respond)
Bug Tracker version 2.7.1 suffers from a database name and credential disclosure vulnerability.