iBaseCMS 1.23 SQL Injection / File Upload
Posted by deepcore under exploit (No Respond)
iBaseCMS version 1.23 suffers from file upload, remote code execution, and remote SQL injection vulnerabilities.
Archive for March, 2017
Western Digital My Cloud Command Injection
Posted by deepcore under exploit (No Respond)
Western Digital My Cloud suffers from multiple command injection vulnerabilities.
Bull / IBM AIX Clusterwatch / Watchware File Write / Command Injection
Posted by deepcore under exploit (No Respond)
Bull / IBM AIX Clusterwatch / Watchware suffers from having trivial admin credentials, system file writes, and OS command injection vulnerabilities.
Western Digital My Cloud Buffer Overflow
Posted by deepcore under exploit (No Respond)
Western Digital My Cloud suffers from a buffer overflow vulnerability that allows for remote code execution.
Struts2 S2-045 Remote Command Execution
Posted by deepcore under exploit (No Respond)
Struts S2-045 remote command execution proof of concept exploit.
Daily Deals Script 1.0 SQL Injection
Posted by deepcore under exploit (No Respond)
Daily Deals Script version 1.0 suffers from a remote SQL injection vulnerability.
Joomla Akeeba Backup 5.2.5 Directory Traversal
Posted by deepcore under exploit (No Respond)
Joomla Akeeba Backup component version 5.2.5 suffers from a directory traversal vulnerability.
Evostream Media Server 1.7.1 Denial Of Service
Posted by deepcore under exploit (No Respond)
Evostream Media Server version 1.7.1 suffers from a denial of service vulnerability.
Mini CMS 1.1 SQL Injection
Posted by deepcore under exploit (No Respond)
Mini CMS version 1.1 suffers from a remote SQL injection vulnerability.
Western Digital My Cloud Command Injection / File Upload
Posted by deepcore under exploit (No Respond)
Western Digital My Cloud suffers from unauthenticated OS command injection and arbitrary file upload vulnerabilities.