Open-AudIT Professional 2.1.1 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Open-AudIT Professional version 2.1.1 suffers from multiple cross site scripting vulnerabilities.
Archive for May, 2018
Open-AudIT Community 2.2.0 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Open-AudIT Community version 2.2.0 suffers from multiple cross site scripting vulnerabilities.
EMC RecoverPoint 4.3 Admin CLI Command Injection
Posted by deepcore under exploit (No Respond)
EMC RecoverPoint version 4.3 suffers from an administrative CLI command injectionv vulnerability.
Wuzhi CMS 4.1.0 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Wuzhi CMS version 4.1.0 suffers from multiple cross site scripting vulnerabilities.
Libuser roothelper Privilege Escalation
Posted by deepcore under exploit (No Respond)
This Metasploit module attempts to gain root privileges on Red Hat based Linux systems, including RHEL, Fedora and CentOS, by exploiting a newline injection vulnerability in libuser and userhelper versions prior to 0.56.13-8 and version 0.60 before 0.60-7. This Metasploit module makes use of the roothelper.c exploit from Qualys to insert a new user with […]
[webapps] XATABoost 1.0.0 – SQL Injection
Posted by deepcore under Security (No Respond)
[dos] 2345 Security Guard 3.7 – '2345NsProtect.sys' Denial of Service
Posted by deepcore under Security (No Respond)
[shellcode] Linux/x86 – Reverse TCP (127.0.0.1:4444/TCP) Shell Shellcode (96 Bytes)
Posted by deepcore under Security (No Respond)
[webapps] Monstra CMS 3.0.4 – Remote Code Execution
Posted by deepcore under Security (No Respond)
WordPress WP User Groups 2.0.0 Cross Site Request Forgery
Posted by deepcore under exploit (No Respond)
WordPress WP User Groups plugin version 2.0.0 suffers from a cross site request forgery vulnerability.