GhostMail Filename To Link Script Insertion
Posted by deepcore under exploit (No Respond)
GhostMail suffers from a malicious script insertion vulnerability.
Archive for July, 2018
Open-AudIT Community 2.1.1 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Open-AudIT Community version 2.1.1 suffers from a cross site scripting vulnerability.
JavaScript Core Arbitrary Code Execution
Posted by deepcore under exploit (No Respond)
JavaScript Core arbitrary code execution exploit.
Smart SMS And Email Manager 3.3 SQL Injection
Posted by deepcore under exploit (No Respond)
Smart SMS and Email Manager version 3.3 suffers from a remote SQL injection vulnerability.
Modx Revolution Remote Code Execution
Posted by deepcore under exploit (No Respond)
Modx Revolution versions prior to 2.6.4 suffer from a remote code execution vulnerability.
Barracuda Cloud Control 3.020 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Barracuda Cloud Control version 3.020 suffers from a cross site scripting vulnerability.
Barracuda Cloud Control 7.1.1.003 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Barracuda Cloud Control version 7.1.1.003 suffers from a cross site scripting vulnerability.
Linux BPF Sign Extension Local Privilege Escalation
Posted by deepcore under exploit (No Respond)
Linux kernel versions prior to 4.14.8 utilize the Berkeley Packet Filter (BPF) which contains a vulnerability where it may improperly perform signing for an extension. This can be utilized to escalate privileges. The target system must be compiled with BPF support and must not have kernel.unprivileged_bpf_disabled set to 1. This Metasploit module has been tested […]
Adobe Systems Main lead DBMS Arbitrary Code Injection
Posted by deepcore under exploit (No Respond)
Adobe Systems Mail Lead DBMS suffers from an arbitrary code injection vulnerability.
http://www.sptn.dss.go.th
Posted by deepcore under defacement (No Respond)
http://www.sptn.dss.go.th notified by p4r4d0x cr3w
Tags: defacement