Subscribe via feed.
Archive for July, 2018

Microsoft Windows Enterprise Mode Site List 1/2 XML Injection

Posted by deepcore under exploit (No Respond)

Microsoft Windows Enterprise Mode Site List Manager versions 1 and 2 suffer from an XML external entity injection vulnerability.

[webapps] Fortify Software Security Center (SSC) 17.x/18.1 – XML External Entity Injection

Posted by deepcore under Security (No Respond)

Fortify Software Security Center (SSC) 17.x/18.1 – XML External Entity Injection

Tags: ,

[local] Microsoft Enterprise Mode Site List Manager – XML External Entity Injection

Posted by deepcore under Security (No Respond)

Microsoft Enterprise Mode Site List Manager – XML External Entity Injection

Tags: ,

http://pao-roiet.go.th/m-1.html

Posted by deepcore under defacement (No Respond)

http://pao-roiet.go.th/m-1.html notified by moncet

Tags:

http://www.foodsanitation.bangkok.go.th/0.html

Posted by deepcore under defacement (No Respond)

http://www.foodsanitation.bangkok.go.th/0.html notified by 0N3R1D3R

Tags:

http://enconfund.go.th

Posted by deepcore under defacement (No Respond)

http://enconfund.go.th notified by Turkz.Org

Tags:

macOS / iOS OfficeImporter JavaScript Injection

Posted by deepcore under exploit (No Respond)

macOS and iOS suffer from a javascript injection bug in OfficeImporter.

Barracuda ADC 5.x Cross Site Scripting

Posted by deepcore under exploit (No Respond)

Barracuda ADC version 5.x suffers from cross site scripting vulnerabilities.

Fortify SSC 17.10 / 17.20 / 18.10 XXE Injection

Posted by deepcore under exploit (No Respond)

Fortify SSC versions 17.10, 17.20, and 18.10 suffer from an out-of-band XML external entity injection vulnerability.

OpenConext-EngineBlock 5.7.3 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

OpenConext-EngineBlock versions 5.7.0 through 5.7.3suffers from a cross site scripting vulnerability.