WordPress Woocommerce 2.6.2 API Cross Site Scripting
Posted by deepcore under exploit (No Respond)
WordPress Woocommerce version 2.6.2 suffers from an API related cross site scripting vulnerability.
Archive for September, 2016
Google Docs XSPA / SSRF
Posted by deepcore under exploit (No Respond)
Google Docs appears to suffer from XSPA and SSRF vulnerabilities.
LamaHub 0.0.6.2 Buffer Overflow
Posted by deepcore under exploit (No Respond)
LamaHub version 0.0.6.2 suffers from a buffer overflow vulnerability.
Vodafone Mobile Wifi Reset Admin Password
Posted by deepcore under exploit (No Respond)
Vodafone Mobile Wifi reset administrative password exploit.
LogMeIn Client 1.3.2462 (64bit) Credential Disclosure
Posted by deepcore under exploit (No Respond)
LogMeIn client version 1.3.2462 (64bit) suffers from a local credential memory disclosure vulnerability.
Zabbix 3.0.3 SQL Injection
Posted by deepcore under exploit (No Respond)
Zabbix versions 2.0 through 3.0.3 remote SQL injection exploit.
Jobberbase 2.0 Disclosure / XSS / Code Execution / Upload
Posted by deepcore under exploit (No Respond)
Jobberbase version 2.0 suffers from code execution, open redirect, path disclosure, unrestricted file upload, and SQL injection vulnerabilities.
OoVoo 3.7.1 DLL Hijacking
Posted by deepcore under exploit (No Respond)
OoVoo version 3.7.1 suffers from a DLL hijacking vulnerability.
WinSCP 5.9.1 DLL Hijacking
Posted by deepcore under exploit (No Respond)
WinSCP version 5.9.1 suffers from a DLL hijacking vulnerability.
BugNET 1.6.315.0 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
BugNET version 1.6.315.0 suffers from a cross site scripting vulnerability.