Subscribe via feed.
Archive for January, 2019

WordPress Wisechat 2.6.3 Forced Redirect / Phishing

Posted by deepcore under exploit (No Respond)

WordPress Wisechat plugin version 2.6.3 suffers from a forced tab redirection flow that can aid in phishing attacks.

Lua 5.3.5 Use-After-Free

Posted by deepcore under exploit (No Respond)

Lua version 5.3.5 suffers from a use-after-free vulnerability.

Joomla RSFirewall 2.11.25 Database Disclosure

Posted by deepcore under exploit (No Respond)

Joomla RSFirewall component version 2.11.25 suffers from a database disclosure vulnerability.

Green CMS 2.x SQL Injection

Posted by deepcore under exploit (No Respond)

Green CMS version 2.x suffers from a remote SQL injection vulnerability.

Green CMS 2.x Arbitrary File / Directory Download

Posted by deepcore under exploit (No Respond)

Green CMS version 2.x suffers from arbitrary file and directory download vulnerabilities.

Podcast Generator 2.7 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

Podcast Generator version 2.7 suffers from a persistent cross site scripting vulnerability.

WordPress pitajte-strucnjaka 4.9.6 Shell Upload

Posted by deepcore under exploit (No Respond)

WordPress pitajte-strucnjaka plugin version 4.9.6 suffers from a remote shell upload vulnerability.

WordPress MM-Forms-Community 2.2.7 Shell Upload / SQL Injection

Posted by deepcore under exploit (No Respond)

WordPress MM-Forms-Community plugin version 2.2.7 suffers from remote shell upload and remote SQL injection vulnerabilities.

https://www.banmor.go.th

Posted by deepcore under defacement (No Respond)

https://www.banmor.go.th notified by PRdV

Tags:

Apple Security Advisory 2019-1-24-1

Posted by deepcore under Apple (No Respond)

Apple Security Advisory 2019-1-24-1 – iTunes 12.9.3 for Windows is now available and addresses code execution and cross site scripting vulnerabilities.

Tags: , ,