SpotFTP Password Recover 2.4.2 Denial Of Service
Posted by deepcore under exploit (No Respond)
SpotFTP Password Recover version 2.4.2 suffers from a denial of service vulnerability.
Archive for January, 2019
Microsoft Edge 44.17763.1.0 Null Pointer Dereference
Posted by deepcore under exploit (No Respond)
Microsoft Edge version 44.17763.1.0 suffers from a null pointer dereference vulnerability.
Foscam Video Management System 1.1.4.9 Denial Of Service
Posted by deepcore under exploit (No Respond)
Foscam Video Management System version 1.1.4.9 suffers from a denial of service vulnerability.
LayerBB 1.1.1 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
LayerBB version 1.1.1 suffers from a cross site scripting vulnerability.
Joomla Codextrous B2jcontact 2.1.17 Shell Upload
Posted by deepcore under exploit (No Respond)
Joomla Codextrous B2jcontact component version 2.1.17 suffers from a remote shell upload vulnerability.
Mailcleaner Remote Code Execution
Posted by deepcore under exploit (No Respond)
This Metasploit module exploits the command injection vulnerability of MailCleaner Community Edition product. An authenticated user can execute an operating system command under the context of the web server user which is root. /admin/managetracing/search/search endpoint takes several user inputs and then pass them to the internal service which is responsible for executing operating system command. […]
MyBB OUGC Awards 1.8.3 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
MyBB OUGC Awards plugin version 1.8.3 suffers from a cross site scripting vulnerability.
Webgalamb Information Disclosure / XSS / CSRF / SQL Injection
Posted by deepcore under exploit (No Respond)
Webgalamb suffers from remote code execution, cross site request forgery, cross site scripting, information leakage, and remote SQL injection vulnerabilities.
Base Soundtouch 18.1.4 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Base Soundtouch iOS application version 18.1.4 suffers from a cross site scripting vulnerability.
PLC Wireless Router GPN2.4P21-C-CN Cross Site Scripting
Posted by deepcore under exploit (No Respond)
PLC Wireless Router GPN2.4P21-C-CN suffers from a cross site scripting vulnerability.
