[webapps] DenyAll WAF < 6.3.0 – Remote Code Execution (Metasploit)
Posted by deepcore under Security (No Respond)
Archive for September, 2017
Telekom Magenta CMS – Multiple Cross Site Vulnerabilities
Posted by deepcore under exploit (No Respond)
The vulnerability laboratory core research team discovered multiple client-side cross site scripting vulnerabilities in …
OWASPZAP v2.5.0 – Remote Code Execution Vulnerability
Posted by deepcore under exploit (No Respond)
…
Microsoft Windows – MSC XXE Data Exfiltration Vulnerability
Posted by deepcore under exploit (No Respond)
The vulnerability laboratory core research team discovered a xml external entity (XXE) data exfiltration vulnerability i…
D-Link DIR8xx Router Firmware Upload
Posted by deepcore under exploit (No Respond)
D-Link DIR8xx routers suffer from a local firmware upload vulnerability.
D-Link DIR8xx Remote Root Code Execution
Posted by deepcore under exploit (No Respond)
D-Link DIR8xx routers suffers from a remote root code execution vulnerability.
D-Link DIR8xx Credential Leak
Posted by deepcore under exploit (No Respond)
D-Link DIR8xx routers suffer from a credential disclosure vulnerability.
Consumer Review Script 1.0 SQL Injection
Posted by deepcore under exploit (No Respond)
Consumer Review Script version 1.0 suffers from a remote SQL injection vulnerability.
XYZ Auto Classifieds 1.0 SQL Injection
Posted by deepcore under exploit (No Respond)
XYZ Auto Classifieds version 1.0 suffers from a remote SQL injection vulnerability.
Astaro Security Gateway 7 Remote Code Execution
Posted by deepcore under exploit (No Respond)
Astaro Security Gateway 7 suffers from a remote code execution vulnerability.