Navicat Premium 11.2.11 (64bit) Local Password Disclosure
Posted by deepcore under exploit (No Respond)
Navicat Premium version 11.2.11 suffers from a local password disclosure vulnerability.
Archive for September, 2016
MySQL 5.5.45 64bit Local Credential Dislcosure
Posted by deepcore under exploit (No Respond)
MySQL version 5.5.45 64-bit suffers from a local credential disclosure vulnerability.
glibc getaddrinfo Stack Buffer Overflow
Posted by deepcore under exploit (No Respond)
glibc getaddrinfo stack-based buffer overflow exploit that leverages the priorly disclosed issue by Google.
WIN-911 7.17.00 Insecure File Permissions / Plaintext Password Storage
Posted by deepcore under exploit (No Respond)
WIN-911 version 7.17.00 suffers from incorrect default permissions and plaintext credential storage vulnerabilities.
PHPIPAM 1.2.1 Cross Site Scripting / SQL Injection
Posted by deepcore under exploit (No Respond)
PHPIPAM version 1.2.1 suffers from cross site scripting and remote SQL injection vulnerabilities.
Aruba Networks / Alcatel-Lucent Private Key Disclosure
Posted by deepcore under exploit (No Respond)
Various Aruba Networks and Alcatel-Lucent products have a private key for a browser-trusted certificate embedded in firmware.
http://www.koksaat.go.th
Posted by deepcore under defacement (No Respond)
http://www.koksaat.go.th notified by JoOker
Tags: defacement[webapps] – Adobe ColdFusion < 11 Update 10 – XML External Entity Injection
Posted by deepcore under Security (No Respond)
[local] – TeamViewer 11.0.65452 (64 bit) – Local Credentials Disclosure
Posted by deepcore under Security (No Respond)
[remote] – SugarCRM 6.5.23 – REST PHP Object Injection Exploit (Metasploit)
Posted by deepcore under Security (No Respond)