[webapps] Intex Router N-150 – Arbitrary File Upload
Posted by deepcore under Security (No Respond)
Archive for June, 2018
[webapps] Intex Router N-150 – Cross-Site Request Forgery (Add Admin)
Posted by deepcore under Security (No Respond)
[webapps] WordPress Plugin Comments Import & Export < 2.0.4 – CSV Injection
Posted by deepcore under Security (No Respond)
[webapps] WordPress Plugin Advanced Order Export For WooCommerce < 1.5.4 – CSV Injection
Posted by deepcore under Security (No Respond)
WordPress Plugin Advanced Order Export For WooCommerce < 1.5.4 – CSV Injection
Tags: 0day, remote exploit[remote] Foxit Reader 9.0.1.1049 – Remote Code Execution
Posted by deepcore under Security (No Respond)
[webapps] DIGISOL DG-BR4000NG – Cross-Site Scripting
Posted by deepcore under Security (No Respond)
phpMyAdmin 4.8.1 Local File Inclusion
Posted by deepcore under exploit (No Respond)
phpMyAdmin version 4.8.1 suffers from an authenticated local file inclusion vulnerabilities.
GreenCMS 2.3.0603 Information Disclosure
Posted by deepcore under exploit (No Respond)
GreenCMS version 2.3.0603 suffers from a sensitive information disclosure vulnerability.
phpLDAPadmin 1.2.2 LDAP Injection
Posted by deepcore under exploit (No Respond)
phpLDAPadmin version 1.2.2 suffers from a server_id LDAP injection vulnerability.
phpMyAdmin 4.8.1 Code Execution / Local File Inclusion
Posted by deepcore under exploit (No Respond)
phpMyAdmin version 4.8.1 suffers from a local file inclusion vulnerability that can lead to code execution.