[dos] MixPad 5.00 – Buffer Overflow
Posted by deepcore under Security (No Respond)
Archive for January, 2018
[webapps] CentOS Web Panel 0.9.8.12 – 'row_id' / 'domain' SQL Injection
Posted by deepcore under Security (No Respond)
[local] HP Connected Backup 8.6/8.8.6 – Local Privilege Escalation
Posted by deepcore under Security (No Respond)
[webapps] NEC Univerge SV9100/SV8100 WebPro 10.0 – Configuration Download
Posted by deepcore under Security (No Respond)
[dos] RAVPower 2.000.056 – Memory Disclosure
Posted by deepcore under Security (No Respond)
CentOS Web Panel v0.9.8.12 – SQL Injection Vulnerabilities
Posted by deepcore under exploit (No Respond)
The vulnerability laboratory core research team discovered a remote sql-injection web vulnerability in the CentOS Web Pa…
Subsonic v6.1.3 – Flash Cross-Domain Policy Vulnerability
Posted by deepcore under exploit (No Respond)
…
Simple ASC CMS 1.2 Database Disclosure
Posted by deepcore under exploit (No Respond)
Simple ASC CMS version 1.2 suffers from a database disclosure vulnerability.
Photo Vault 1.2 Brute Forcing Issue
Posted by deepcore under exploit (No Respond)
Photo Vault version 1.2 fails to rate limit authentication attempts allowing for brute force attacks.
CentOS Web Panel 0.9.8.12 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
CentOS Web Panel version 0.9.8.12 suffers from multiple cross site scripting vulnerabilities.