2017 June

IBM Informix Dynamic Server DLL Injection / Code Execution

Posted by deepcore under exploit (No Respond)

IBM Informix Dynamic Server suffers from dll injection, PHP code injection, and heap buffer overflow vulnerabilities.

KEMP LoadMaster 7.135.0.13245 XSS / Code Execution

Posted by deepcore under exploit (No Respond)

KEMP LoadMaster version 7.135.0.13245 suffers from persistent cross site scripting and remote code execution vulnerabilities.

ModX CMS Proof Of Concept Shell Upload

Posted by deepcore under exploit (No Respond)

This proof of concept code shows how manager functionality can be abused in ModX CMS to upload a shell.

WordPress Simple Slideshow Manager 2.2 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

WordPress Simple Slideshow Manager plugin versions 2.2 and below suffer from multiple cross site scripting vulnerabilities.

OV3 Online Administration 3.0 Parameter Traversal Arbitrary File Access

Posted by deepcore under exploit (No Respond)

OV3 Online Administration version 3.0 suffers from a traversal vulnerability that allows for arbitrary file access.

OV3 Online Administration 3.0 Authenticated Code Execution

Posted by deepcore under exploit (No Respond)

OV3 Online Administration version 3.0 suffers from an authenticated remote code execution vulnerability.

OV3 Online Administration 3.0 SQL Injection

Posted by deepcore under exploit (No Respond)

OV3 Online Administration version 3.0 suffers from multiple unauthenticated remote SQL injection vulnerabilities.

Piwigo Facetag 0.0.3 SQL Injection

Posted by deepcore under exploit (No Respond)

Piwigo Facetag plugin version 0.0.3 suffers from a remote SQL injection vulnerability.

Packet Storm New Exploits For May, 2017

Posted by deepcore under exploit (No Respond)

This archive contains all of the 193 exploits added to Packet Storm in May, 2017.

WebKit Document::prepareForDestruction / CachedFrame Universal XSS

Posted by deepcore under exploit (No Respond)

WebKit suffers from a universal cross site scripting vulnerability via Document::prepareForDestruction and CachedFrame.

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

IBM Informix Dynamic Server DLL Injection / Code Execution

KEMP LoadMaster 7.135.0.13245 XSS / Code Execution

ModX CMS Proof Of Concept Shell Upload

WordPress Simple Slideshow Manager 2.2 Cross Site Scripting

OV3 Online Administration 3.0 Parameter Traversal Arbitrary File Access

OV3 Online Administration 3.0 Authenticated Code Execution

OV3 Online Administration 3.0 SQL Injection

Piwigo Facetag 0.0.3 SQL Injection

Packet Storm New Exploits For May, 2017

WebKit Document::prepareForDestruction / CachedFrame Universal XSS

Tabs Switcher

Categories

Archives

Meta

BLOGROLL

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Tabs Switcher

Categories

Archives

Meta

BLOGROLL