[webapps] Multi Level Marketing – SQL Injection
Posted by deepcore under Security (No Respond)
Archive for September, 2017
Apple Security Advisory 2017-09-19-1
Posted by deepcore under Apple (No Respond)
WordPress 2kb Amazon Affiliates Store 2.1.0 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
WordPress 2kb Amazon Affiliates Store plugin versions 2.1.0 and below suffer from a cross site scripting vulnerability.
Disk Pulse Enterprise 9.9.16 GET Buffer Overflow
Posted by deepcore under exploit (No Respond)
This Metasploit module exploits an SEH buffer overflow in Disk Pulse Enterprise version 9.9.16. If a malicious user sends a crafted HTTP GET request it is possible to execute a payload that would run under the Windows NT AUTHORITYSYSTEM account.
[webapps] PHPMyFAQ 2.9.8 – Cross-Site Scripting
Posted by deepcore under Security (No Respond)
[dos] Microsoft Edge – Chakra Incorrectly Parses Object Patterns
Posted by deepcore under Security (No Respond)
[dos] Microsoft Edge Chakra – 'Parser::ParseCatch' does not Handle 'eval'
Posted by deepcore under Security (No Respond)
[dos] Linux Kernel < 4.13.1 – BlueTooth Buffer Overflow (PoC)
Posted by deepcore under Security (No Respond)
[dos] Microsoft Edge Chakra – 'JavascriptFunction::ReparseAsmJsModule' Incorrectly Re-parses
Posted by deepcore under Security (No Respond)
Microsoft Edge Chakra – ‘JavascriptFunction::ReparseAsmJsModule’ Incorrectly Re-parses
Tags: 0day, remote exploit[dos] Microsoft Edge Chakra – Deferred Parsing Makes Wrong Scopes
Posted by deepcore under Security (No Respond)