[dos] Microsoft Edge Chakra – Cross Context Use-After-Free
Posted by deepcore under Security (No Respond)
Archive for May, 2018
[webapps] SAP Internet Transaction Server 6200.x – Session Fixation / Cross-Site Scripting
Posted by deepcore under Security (No Respond)
SAP Internet Transaction Server 6200.x – Session Fixation / Cross-Site Scripting
Tags: 0day, remote exploit[dos] Skia and Firefox – Integer Overflow in SkTDArray Leading to Out-of-Bounds Write
Posted by deepcore under Security (No Respond)
Skia and Firefox – Integer Overflow in SkTDArray Leading to Out-of-Bounds Write
Tags: 0day, remote exploit[webapps] Oracle WebCenter FatWire Content Server < 7 – Improper Access Control
Posted by deepcore under Security (No Respond)
[webapps] Oracle WebCenter Sites 11.1.1.8.0/12.2.1.x – Cross-Site Scripting
Posted by deepcore under Security (No Respond)
[webapps] KomSeo Cart 1.3 – 'my_item_search' SQL Injection
Posted by deepcore under Security (No Respond)
Nordex N149/4.0-4.5 Wind Turbine Web Server SQL Injection
Posted by deepcore under exploit (No Respond)
Nordex N149/4.0-4.5 Wind Turbine Web Server suffers from a remote SQL injection vulnerability.
Siemens SIMATIC S7-1200 CPU Cross Site Request Forgery
Posted by deepcore under exploit (No Respond)
Siemens SIMATIC S7-1200 suffers from a CPU functionality related cross site request forgery vulnerability.
ERPnext 11.x.x Cross Site Scripting
Posted by deepcore under exploit (No Respond)
ERPnext version 11.x.x suffers from a cross site scripting vulnerability.
Teradek Cube 7.3.6 (snapshot.cgi) Stream Disclosure
Posted by deepcore under exploit (No Respond)
Teradek Cube version 7.3.6 suffers from a stream disclosure vulnerability in snapshot.cgi.