Subscribe via feed.
Archive for April, 2018

Geist WatchDog Console 3.2.2 XSS / XML Injection / Insecure Permissions

Posted by deepcore under exploit (No Respond)

Geist WatchDog Console version 3.2.2 suffers from cross site scripting, XML external entity injection, and insecure file permission vulnerabilities.

Joomla JS Jobs 1.2.0 Cross Site Request Forgery

Posted by deepcore under exploit (No Respond)

Joomla JS Jobs component version 1.2.0 suffers from a cross site request forgery vulnerability.

Facebook Graph Groups Crosswalk User Metadata Mapping Weakness

Posted by deepcore under exploit (No Respond)

Facebook Graph groups crosswalk user’s metadata mapping weakness demo proof of concept script.

WordPress Caldera Forms 1.5.9.1 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

WordPress Caldera Forms plugin version 1.5.9.1 suffers from a cross site scripting vulnerability.

Lutron Quantum 3.2.243 Information Disclosure

Posted by deepcore under exploit (No Respond)

Lutron Quantum versions 2.0 through 3.2.243 suffer from an information disclosure vulnerability.

Digital Guardian Management Console 7.1.2.0015 Server Side Request Forgery

Posted by deepcore under exploit (No Respond)

Digital Guardian Management Console version 7.1.2.0015 suffer from a server-side request forgery vulnerability.

Digital Guardian Management Console 7.1.2.0015 XXE Injection

Posted by deepcore under exploit (No Respond)

Digital Guardian Management Console version 7.1.2.0015 suffers from an XML external entity injection vulnerability.

[webapps] Cobub Razor 0.8.0 – Physical path Leakage

Posted by deepcore under Security (No Respond)

Cobub Razor 0.8.0 – Physical path Leakage

Tags: ,

http://skmo.moph.go.th

Posted by deepcore under defacement (No Respond)

http://skmo.moph.go.th notified by RxR

Tags:

Joomla jDownloads 3.2.58 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

Joomla jDownloads component version 3.2.58 suffers from a cross site scripting vulnerability.