LFCMS 3.7.0 Cross Site Request Forgery
Posted by deepcore under exploit (No Respond)
LFCMS version 3.7.0 suffers from an add administrator cross site request forgery vulnerability.
Archive for June, 2018
Dell EMC RecoverPoint Local Root Command Execution
Posted by deepcore under exploit (No Respond)
Dell EMC RecoverPoint versions prior to 5.1.2 suffer from a local root command execution vulnerability.
TP-Link TL-WA850RE Remote Command Execution
Posted by deepcore under exploit (No Respond)
TP-Link TL-WA850RE suffers from a remote command execution vulnerability.
Apache CouchDB Remote Code Execution
Posted by deepcore under exploit (No Respond)
Apache CouchDB versions prior to 2.1.0 remote code execution proof of concept exploit.
IPConfigure Orchid VMS 2.0.5 Directory Traversal / Information Disclosure
Posted by deepcore under exploit (No Respond)
Orchid Core VMS is vulnerable to a directory traversal attack. This affects Linux and Windows operating systems. This allows a remote, unauthenticated attacker to send crafted GET requests to the application, which results in the ability to read arbitrary files outside of the applications web directory. This issue is further compounded as the Linux version […]
LFCMS 3.7.0 Cross Site Request Forgery
Posted by deepcore under exploit (No Respond)
LFCMS version 3.7.0 suffers from an add user cross site request forgery vulnerability.
NewMark CMS 2.1 SQL Injection
Posted by deepcore under exploit (No Respond)
NewMark CMS version 2.1 suffers from a remote SQL injection vulnerability.
[webapps] GreenCMS 2.3.0603 – Information Disclosure
Posted by deepcore under Security (No Respond)
[webapps] phpMyAdmin 4.8.1 – Local File Inclusion
Posted by deepcore under Security (No Respond)
[dos] QEMU Guest Agent 2.12.50 – Denial of Service
Posted by deepcore under Security (No Respond)