2018 September

Jorani Leave Management System 0.6.5 SQL Injection

Posted by deepcore under exploit (No Respond)

Jorani Leave Management System version 0.6.5 suffers from a remote SQL injection vulnerability.

WirelessHART Fieldgate SWG70 3.0 Directory Traversal

Posted by deepcore under exploit (No Respond)

WirelessHART Fieldgate SWG70 version 3.0 suffers from a directory traversal vulnerability.

D-Link Dir-600M N150 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

D-Link Dir-600M N150 suffers from a cross site scripting vulnerability.

KONE KGC 4.6.4 DoS / Code Execution / LFI / Bypass

Posted by deepcore under exploit (No Respond)

KONE KGC versions 4.6.4 and below suffer from unauthenticated remote code execution, denial of service, local file inclusion, and missing FTP access control vulnerabilities.

Cisco Umbrella Roaming Client 2.0.168 Privilege Escalation

Posted by deepcore under exploit (No Respond)

Cisco Umbrella Roaming Client version 2.0.168 suffers from a privilege escalation vulnerability.

IDOR On ProConf Peer-Review And Conference Management 6.0 File Disclosure

Posted by deepcore under exploit (No Respond)

IDOR on ProConf Peer-Review and Conference Management versions 6.0 and below suffer from an insecure direct object reference vulnerability that allows for file disclosure.

DokuWiki 2018-04-22a Greebo Arbitrary Code Execution

Posted by deepcore under exploit (No Respond)

DokuWiki version 2018-04-22a Greebo suffers from a CSV formula injection vulnerability that allows for arbitrary code execution.

Ghostscript Failed Restore Command Execution

Posted by deepcore under exploit (No Respond)

This Metasploit module exploits a -dSAFER bypass in Ghostscript to execute arbitrary commands by handling a failed restore (grestore) in PostScript to disable LockSafetyParams and avoid invalidaccess. This vulnerability is reachable via libraries such as ImageMagick, and this module provides the latest vector for Ghostscript.

[webapps] Softneta MedDream PACS Server Premium 6.7.1.1 – Directory Traversal

Posted by deepcore under Security (No Respond)

Softneta MedDream PACS Server Premium 6.7.1.1 – Directory Traversal

Tags: 0day, remote exploit

[local] iSmartViewPro 1.5 – 'SavePath for ScreenShots' Local Buffer Overflow (SEH)

Posted by deepcore under Security (No Respond)

iSmartViewPro 1.5 – ‘SavePath for ScreenShots’ Local Buffer Overflow (SEH)

Tags: 0day, remote exploit

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Jorani Leave Management System 0.6.5 SQL Injection

WirelessHART Fieldgate SWG70 3.0 Directory Traversal

D-Link Dir-600M N150 Cross Site Scripting

KONE KGC 4.6.4 DoS / Code Execution / LFI / Bypass

Cisco Umbrella Roaming Client 2.0.168 Privilege Escalation

IDOR On ProConf Peer-Review And Conference Management 6.0 File Disclosure

DokuWiki 2018-04-22a Greebo Arbitrary Code Execution

Ghostscript Failed Restore Command Execution

[webapps] Softneta MedDream PACS Server Premium 6.7.1.1 – Directory Traversal

[local] iSmartViewPro 1.5 – 'SavePath for ScreenShots' Local Buffer Overflow (SEH)

Tabs Switcher

BLOGROLL

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Tabs Switcher

BLOGROLL