tcPBX Remote File Disclosure
Posted by deepcore under exploit (No Respond)
tcPBX suffers from a remote file disclosure vulnerability.
Archive for August, 2016
C2S DVR Management Credential Disclosure / Authentication Bypass
Posted by deepcore under exploit (No Respond)
C2S types IRDOME-II-C2S, IRBOX-II-C2S, and DVR suffer from remote credential disclosure and authentication bypass vulnerabilities.
JVC IP-Camera VN-T216VPRU Credential Disclosure
Posted by deepcore under exploit (No Respond)
JVC IP-Camera version VN-T216VPRU suffers from a remote credential disclosure vulnerability.
Vanderbilt IP-Camera CCPW3025-IR / CVMW3025-IR Credential Disclosure
Posted by deepcore under exploit (No Respond)
Vanderbilt IP-Camera versions CCPW3025-IR and CVMW3025-IR suffer from a remote credential disclosure vulnerability.
MESSOA IP-Cameras Authentication Bypass / Credential Changer
Posted by deepcore under exploit (No Respond)
This exploit demonstrates an authentication bypass on multiple MESSOA IP cameras that can change the admin username and password.
WordPress 4.5.3 Core Ajax Handlers Path Traversal
Posted by deepcore under exploit (No Respond)
WordPress version 4.5.3 suffers from a path traversal vulnerability in the core ajax handlers.
Sakai 10.7 Cross Site Scripting / Local File Inclusion
Posted by deepcore under exploit (No Respond)
Sakai version 10.7 suffers from cross site scripting and local file inclusion vulnerabilities.
Newtec Satellite Modem MDM6000 2.2.5 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Newtec Satellite Modem version MDM6000 2.2.5 suffers from a cross site scripting vulnerability.
[papers] – Hunting HTML 5 postMessage Vulnerabilities
Posted by deepcore under Security (No Respond)
[dos] – ObiHai ObiPhone 1032/1062 < 5-0-0-3497 – Multiple Vulnerabilities
Posted by deepcore under Security (No Respond)