Subscribe via feed.
Archive for September, 2016

HDWiKi 4.0.4 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

HDWiKi version 4.0.4 suffers from a cross site scripting vulnerability.

WhatsApp DLL Hijacking

Posted by deepcore under exploit (No Respond)

WhatsApp suffers from a DLL hijacking vulnerability.

Picosmos Shows 1.6.0 Stack Overflow

Posted by deepcore under exploit (No Respond)

Picosmos Shows version 1.6.0 suffers from a stack overflow vulnerability.

Airmail 3.0.2 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

Airmail versions 3.0.2 and below suffer from a cross site scripting vulnerability.

WordPress Cubed Theme 1.2 CSRF / File Upload

Posted by deepcore under exploit (No Respond)

WordPress Cubed theme version 1.2 suffers from cross site request forgery and remote file upload vulnerabilities.

PHPHolidays CMS 3.00.50 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

PHPHolidays CMS version 3.00.50 suffers from a cross site scripting vulnerability.

WordPress 4.5.3 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

WordPress version 4.5.3 suffers from a cross site scripting vulnerability when an uploaded image filename has a malicious payload inserted.

Apple iCloud Desktop Client 5.2.1.0 Credential Disclosure

Posted by deepcore under Apple (No Respond)

Apple iCloud Desktop Client version 5.2.1.0 local credential memory disclosure exploit.

Tags: , ,

[remote] – LamaHub 0.0.6.2 – Buffer Overflow

Posted by deepcore under Security (No Respond)

LamaHub 0.0.6.2 – Buffer Overflow

Tags: ,

[webapps] – Vodafone Mobile Wifi – Reset Admin Password

Posted by deepcore under Security (No Respond)

Vodafone Mobile Wifi – Reset Admin Password

Tags: ,