WordPress Share This Image 1.03 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
WordPress Share This Image plugin version 1.03 suffers from a cross site scripting vulnerability.
Archive for December, 2017
WordPress Yakadanda Google+ Hangout Events 0.3.7 XSS
Posted by deepcore under exploit (No Respond)
WordPress Yakadanda Google+ Hangout Events plugin version 0.3.7 suffers from a cross site scripting vulnerability.
Clockwork SMS Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Eight different Clockwork SMS WordPress plugins suffer from cross site scripting vulnerabilities.
Joomla! Guru Pro SQL Injection
Posted by deepcore under exploit (No Respond)
Joomla! Guru Pro component suffers from a remote SQL injection vulnerability.
WIndows jscript!JsArraySlice Uninitialized Variable
Posted by deepcore under exploit (No Respond)
There is an uninitialized variable vulnerability in jscript.dll. This issue could potentially be exploited through multiple vectors.
CDex 1.96 Stack Buffer Overflow
Posted by deepcore under exploit (No Respond)
CDex version 1.96 suffers from a local stack buffer overflow vulnerability.
Joomla! My Projects 2.0 SQL Injection
Posted by deepcore under exploit (No Respond)
Joomla! My Projects component version 2.0 suffers from a remote SQL injection vulnerability.
Joomla! User Bench 1.0 SQL Injection
Posted by deepcore under exploit (No Respond)
Joomla! User Bench component version 1.0 suffers from a remote SQL injection vulnerability.
Microsoft Windows jscript!RegExpComp::Compile Heap Overflow
Posted by deepcore under exploit (No Respond)
There is a heap overflow in jscript.dll when compiling a regex. This issue could potentially be exploited through multiple vectors.
Windows jscript!NameTbl::GetValDef Use-After-Free
Posted by deepcore under exploit (No Respond)
There is a use-after-free vulnerability in jscript.dll. This issue could potentially be exploited through multiple vectors.