2018 November

Cisco Prime Infrastructure Unauthenticated Remote Code Execution

Posted by deepcore under exploit (No Respond)

Cisco Prime Infrastructure (CPI) contains two basic flaws that when exploited allow an unauthenticated attacker to achieve remote code execution. The first flaw is a file upload vulnerability that allows the attacker to upload and execute files as the Apache Tomcat user; the second is a privilege escalation to root by bypassing execution restrictions in […]

Intel Extreme Tuning Utility 6.4.1.23 – BOF DoS Vulnerability

Posted by deepcore under exploit (No Respond)

The vulnerability laboratory core research team discovered a denial of service vulnerability in the Intel Extreme Tuning…

[webapps] Gumbo CMS 0.99 – SQL Injection

Posted by deepcore under Security (No Respond)

Gumbo CMS 0.99 – SQL Injection

Tags: 0day, remote exploit

[webapps] Surreal ToDo 0.6.1.2 – SQL Injection

Posted by deepcore under Security (No Respond)

Surreal ToDo 0.6.1.2 – SQL Injection

Tags: 0day, remote exploit

[shellcode] Linux/x86 – Bind (99999/TCP) NetCat Traditional (/bin/nc) Shell (/bin/bash) Shellcode (58 bytes)

Posted by deepcore under Security (No Respond)

Linux/x86 – Bind (99999/TCP) NetCat Traditional (/bin/nc) Shell (/bin/bash) Shellcode (58 bytes)

Tags: 0day, remote exploit

[webapps] Easyndexer 1.0 – Arbitrary File Download

Posted by deepcore under Security (No Respond)

Easyndexer 1.0 – Arbitrary File Download

Tags: 0day, remote exploit

[webapps] Tina4 Stack 1.0.3 – Cross-Site Request Forgery (Update Admin)

Posted by deepcore under Security (No Respond)

Tina4 Stack 1.0.3 – Cross-Site Request Forgery (Update Admin)

Tags: 0day, remote exploit

[webapps] Tina4 Stack 1.0.3 – SQL Injection / Database File Download

Posted by deepcore under Security (No Respond)

Tina4 Stack 1.0.3 – SQL Injection / Database File Download

Tags: 0day, remote exploit

[webapps] Data Center Audit 2.6.2 – Cross-Site Request Forgery (Update Admin)

Posted by deepcore under Security (No Respond)

Data Center Audit 2.6.2 – Cross-Site Request Forgery (Update Admin)

Tags: 0day, remote exploit

[local] xorg-x11-server < 1.20.1 – Local Privilege Escalation

Posted by deepcore under Security (No Respond)

xorg-x11-server < 1.20.1 – Local Privilege Escalation

Tags: 0day, remote exploit

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Cisco Prime Infrastructure Unauthenticated Remote Code Execution

Intel Extreme Tuning Utility 6.4.1.23 – BOF DoS Vulnerability

[webapps] Gumbo CMS 0.99 – SQL Injection

[webapps] Surreal ToDo 0.6.1.2 – SQL Injection

[shellcode] Linux/x86 – Bind (99999/TCP) NetCat Traditional (/bin/nc) Shell (/bin/bash) Shellcode (58 bytes)

[webapps] Easyndexer 1.0 – Arbitrary File Download

[webapps] Tina4 Stack 1.0.3 – Cross-Site Request Forgery (Update Admin)

[webapps] Tina4 Stack 1.0.3 – SQL Injection / Database File Download

[webapps] Data Center Audit 2.6.2 – Cross-Site Request Forgery (Update Admin)

[local] xorg-x11-server < 1.20.1 – Local Privilege Escalation

Tabs Switcher

BLOGROLL

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Tabs Switcher

BLOGROLL