phpMoAdmin 1.1.5 Cross Site Request Forgery / Cross Site Scripting
Posted by deepcore under exploit (No Respond)
phpMoAdmin version 1.1.5 suffers from cross site request forgery and cross site scripting vulnerabilities.
Archive for January, 2019
BMC Remedy / ITAM 7.1.00 / 9.1.02.003 Information Disclosure
Posted by deepcore under exploit (No Respond)
BMC Remedy and ITAM versions 7.1.00 and 9.1.02.003 suffer from multiple information disclosure vulnerabilities.
WordPress UserPro Privilege Escalation
Posted by deepcore under exploit (No Respond)
WordPress UserPro plugin versions prior to 4.9.21 suffers from a user registration privilege escalation vulnerability.
MyT Project Management 1.5.1 SQL Injection
Posted by deepcore under exploit (No Respond)
MyT Project Management version 1.5.1 suffers from a remote SQL injection vulnerability.
BMC Network Automation 8.7.00.000 Session Hijacking
Posted by deepcore under exploit (No Respond)
The BMC Network Automation allows authenticated users to hijack established remote sessions of other users, version v8.7.00.000 b383 u038 was confirmed to be vulnerable.
TWiki 6.0.2 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
TWiki version 6.0.2 suffers from a cross site scripting vulnerability.
Huawei E5330 21.210.09.00.158 Cross Site Request Forgery
Posted by deepcore under exploit (No Respond)
Huawei E5330 version 21.210.09.00.158 suffers from a cross site request forgery vulnerability.
KioWare Server 4.9.6 Privilege Escalation
Posted by deepcore under exploit (No Respond)
KioWare Server version 4.9.6 suffers from a weak folder privilege escalation vulnerability.
Roxy Fileman 1.4.5 File Upload / Directory Traversal
Posted by deepcore under exploit (No Respond)
Roxy Fileman version 1.4.5 suffers from remote file upload and directory traversal vulnerabilities.
Ox App Suite 7.8.4 / 7.8.3 XSS / CSRF / Information Disclosure
Posted by deepcore under exploit (No Respond)
Ox App Suite versions 7.8.4 and 7.8.3 suffer from cross site scripting, cross site request forgery, and information disclosure vulnerabilities.
