KORA 2.7.0 SQL Injection
Posted by deepcore under exploit (No Respond)
KORA version 2.7.0 suffers from a remote SQL injection vulnerability.
Archive for October, 2018
HotelDruid 2.2.4 SQL Injection
Posted by deepcore under exploit (No Respond)
HotelDruid version 2.2.4 suffers from a remote SQL injection vulnerability.
Navigate CMS 2.8.5 Arbitrary File Download
Posted by deepcore under exploit (No Respond)
Navigate CMS version 2.8.5 suffers from an arbitrary file download vulnerability.
Kados R10 GreenBee SQL Injection
Posted by deepcore under exploit (No Respond)
Kados R10 GreenBee suffers from a remote SQL injection vulnerability.
Vishesh Auto Index 3.1 SQL Injection
Posted by deepcore under exploit (No Respond)
Vishesh Auto Index version 3.1 suffers from a remote SQL injection vulnerability.
Rukovoditel Project Management CRM 2.3 SQL Injection
Posted by deepcore under exploit (No Respond)
Rukovoditel Project Management CRM version 2.3 suffers from a remote SQL injection vulnerability.
MV Video Sharing Software 1.2 SQL Injection
Posted by deepcore under exploit (No Respond)
MV Video Sharing Software version 1.2 suffers from a remote SQL injection vulnerability.
HighPortal 12.5 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
HighPortal version 12.5 suffers from a cross site scripting vulnerability.
GIU Gallery Image Upload 0.3.1 SQL Injection
Posted by deepcore under exploit (No Respond)
GIU Gallery Image Upload version 0.3.1 suffers from a remote SQL injection vulnerability.
Microsoft Windows FSCTL_FIND_FILES_BY_SID Information Disclosure
Posted by deepcore under exploit (No Respond)
On Microsoft Windows, the FSCTL_FIND_FILES_BY_SID control code does not check for permissions to list a directory leading to disclosure of file names when a user is not granted FILE_LIST_DIRECTORY access.
