Subscribe via feed.
Archive for October, 2018

WordPress Wordfence 7.1.12 XSS / Username Disclosure

Posted by deepcore under exploit (No Respond)

WordPress Wordfence plugin version 7.1.12 suffers from bypass, cross site scripting, and path disclosure vulnerabilities.

User Management 1.1 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

User Management version 1.1 suffers from a cross site scripting vulnerability.

Zenar Content Management System 8.3 Cross Site Request Forgery

Posted by deepcore under exploit (No Respond)

Zenar Content Management System version 8.3 suffers from a cross site request forgery vulnerability.

Time And Expense Management System 3.0 SQL Injection

Posted by deepcore under exploit (No Respond)

Time and Expense Management System version 3.0 suffers from a remote SQL injection vulnerability.

http://www.kudnamsai.go.th/activity/images/83506.jpg

Posted by deepcore under defacement (No Respond)

http://www.kudnamsai.go.th/activity/images/83506.jpg notified by BlackErroR

Tags:

http://www.samrongkk.go.th/activity/images/97023.gif

Posted by deepcore under defacement (No Respond)

http://www.samrongkk.go.th/activity/images/97023.gif notified by TheMario

Tags:

[webapps] OwnTicket 1.0 – 'TicketID' SQL Injection

Posted by deepcore under Security (No Respond)

OwnTicket 1.0 – ‘TicketID’ SQL Injection

Tags: ,

[webapps] Learning with Texts 1.6.2 – 'start' SQL Injection

Posted by deepcore under Security (No Respond)

Learning with Texts 1.6.2 – ‘start’ SQL Injection

Tags: ,

[webapps] PHP-SHOP master 1.0 – Cross-Site Request Forgery (Add admin)

Posted by deepcore under Security (No Respond)

PHP-SHOP master 1.0 – Cross-Site Request Forgery (Add admin)

Tags: ,

Academic Timetable Final Build 7.0a / 7.0b Information Disclosure

Posted by deepcore under exploit (No Respond)

Academic Timetable Final Build versions 7.0a through 7.0b suffer from an information leakage vulnerability.