Richfaces 3.x Remote Code Execution
Posted by deepcore under exploit (No Respond)
Richfaces version 3.x suffers from a remote code execution vulnerability.
Archive for November, 2018
Ticketly 1.0 SQL Injection
Posted by deepcore under exploit (No Respond)
Ticketly version 1.0 suffers from a remote SQL injection vulnerability.
WordPress CherryFramework Themes 3.1.4 Backup File Download
Posted by deepcore under exploit (No Respond)
WordPress CherryFramework Themes version 3.1.4 suffers from a backup file download vulnerability.
WebOfisi E-Ticaret 4 SQL Injection
Posted by deepcore under exploit (No Respond)
WebOfisi E-Ticaret version 4 suffers from a remote SQL injection vulnerability.
Microsoft Skype 2015 / 2016 Denial Of Service
Posted by deepcore under exploit (No Respond)
A large number of emojis received in one message by the Skype For Business client freezes the program for a few seconds. This can be exploited to perform denial of service attacks against Skype for Business users and compromises the availability of the program. Affected includes Skype for Business 2015 (Lync 2013) before version 15.0.5075.1000 […]
Governikus Autent SDK 3.8.1 Signature Bypass
Posted by deepcore under exploit (No Respond)
Governikus Autent SDK versions 3.8.1 and below suffer from a signature bypass vulnerability. This vulnerability could allow an attacker to impersonate any German citizen on a vulnerable web application.
Intel Media Server Studio – Improper Directory Permissions
Posted by deepcore under exploit (No Respond)
The vulnerability laboratory core research team discovered a local privilege escalation vulnerability via improper direc…
[webapps] WebOfisi E-Ticaret V4 – 'urun' SQL Injection
Posted by deepcore under Security (No Respond)
[webapps] Ticketly 1.0 – 'name' SQL Injection
Posted by deepcore under Security (No Respond)
[webapps] WordPress CherryFramework Themes 3.1.4 – Backup File Download
Posted by deepcore under Security (No Respond)