Matrimonial Website Script 2.1.6 SQL Injection
Posted by deepcore under exploit (No Respond)
Matrimonial Website Script version 2.1.6 suffers from a remote SQL injection vulnerability.
Archive for February, 2018
Joomla! jLike 1.0 Information Leak
Posted by deepcore under exploit (No Respond)
Joomla! jLike component version 1.0 suffers from an information leak vulnerability.
Student Profile Management System Script 2.0.6 SQL Injection
Posted by deepcore under exploit (No Respond)
Student Profile Management System Script version 2.0.6 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
WordPress Core Denial Of Service
Posted by deepcore under exploit (No Respond)
WordPress load-scripts.php denial of service exploit.
Joomla! JSP Tickets 1.1 SQL Injection
Posted by deepcore under exploit (No Respond)
Joomla! JSP Tickets component version 1.1 suffers from a remote SQL injection vulnerability.
Joomla! Zh BaiduMap 3.0.0.1 SQL Injection
Posted by deepcore under exploit (No Respond)
Joomla! Zh BaiduMap component version 3.0.0.1 suffers from a remote SQL injection vulnerability.
Joomla! Zh YandexMap 6.2.1.0 SQL Injection
Posted by deepcore under exploit (No Respond)
Joomla! Zh YandexMap component version 6.2.1.0 suffers from a remote SQL injection vulnerability.
Joomla! Zh GoogleMap 8.4.0.0 SQL Injection
Posted by deepcore under exploit (No Respond)
Joomla! Zh GoogleMap component version 8.4.0.0 suffers from a remote SQL injection vulnerability.
Android KeyStore Permission Bypass
Posted by deepcore under exploit (No Respond)
The keystore binder service (“android.security.IKeystoreService”) allows users to issue several commands related to key management, including adding, removing, exporting and generating cryptographic keys. The service is accessible to many SELinux contexts, including application contexts, but also unprivileged daemons such as “media.codec”. A permission bypass vulnerability exists in the KeyStore service due to getpidcon.
WINCVS 2009R2 DLL Hijacking
Posted by deepcore under exploit (No Respond)
WINCVS 2009R2 suffers from a dll hijacking vulnerability.