2016 November

Schoolhos CMS v2.29 – userberita SQL injection Vulnerability

Posted by deepcore under exploit (No Respond)

The vulnerability laboratory core research team discovered a remote sql-injection vulnerability in the official Schoolho…

Posted by deepcore under exploit (No Respond)

Red Jasmin version 1.0 suffers from a remote SQL injection vulnerability.

Posted by deepcore under exploit (No Respond)

WordPress MailChimp plugin version 4.0.l7 suffers from cross site request forgery and cross site scripting vulnerabilities.

Posted by deepcore under exploit (No Respond)

FTPShell Client version 5.24 PWD remote buffer overflow exploit.

Posted by deepcore under exploit (No Respond)

WordPress Check Email plugin version 0.3 suffers from a cross site scripting vulnerability.

Posted by deepcore under exploit (No Respond)

WordPress Easy Facebook Like Box plugin version 4.3.0 suffers from cross site request forgery and cross site scripting vulnerabilities.

Posted by deepcore under exploit (No Respond)

WordPress Huge IT Portfolio Gallery plugin version 2.0.77 suffers from a cross site scripting vulnerability.

Posted by deepcore under exploit (No Respond)

WordPress Instagram Feed plugin version 1.4.6.2 suffers from cross site request forgery and cross site scripting vulnerabilities.

Posted by deepcore under exploit (No Respond)

WordPress Canvas – Shortcodes plugin version 1.92 suffers from a persistent cross site scripting vulnerability.

Posted by deepcore under exploit (No Respond)

Joomla K2 extension versions 2.5.0 through 2.7.1 suffer from cross site request forgery and remote shell upload vulnerabilities.