Zentyal Server Development Edition 6.0 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Zentyal Server Development Edition version 6.0 suffers from a cross site scripting vulnerability.
Archive for February, 2019
SHAREit For Android 4.0.38 Authentication Bypass / File Download
Posted by deepcore under exploit (No Respond)
DUMPit is an exploit for the SHAREit mobile app abusing two recently discovered vulnerabilities affecting SHAREit Android application versions 4.0.38 and below. The first one allows an attacker to bypass SHAREit device authentication mechanism, and the other one enables the authenticated attacker to download arbitrary files from the user’s device. Both vulnerabilities were reported to […]
[papers] Crypto Wallet Local Storage Attack
Posted by deepcore under Security (No Respond)
[webapps] Feng Office 3.7.0.5 – Remote Command Execution (Metasploit)
Posted by deepcore under Security (No Respond)
[webapps] Simple Online Hotel Reservation System – Cross-Site Request Forgery (Add Admin)
Posted by deepcore under Security (No Respond)
Simple Online Hotel Reservation System – Cross-Site Request Forgery (Add Admin)
Tags: 0day, remote exploit[webapps] Simple Online Hotel Reservation System – Cross-Site Request Forgery (Delete Admin)
Posted by deepcore under Security (No Respond)
Simple Online Hotel Reservation System – Cross-Site Request Forgery (Delete Admin)
Tags: 0day, remote exploit[webapps] Simple Online Hotel Reservation System – SQL Injection
Posted by deepcore under Security (No Respond)
[dos] TransMac 12.3 – Denial of Service (PoC)
Posted by deepcore under Security (No Respond)
[webapps] Usermin 1.750 – Remote Command Execution (Metasploit)
Posted by deepcore under Security (No Respond)
[webapps] Joomla! Component J2Store < 3.3.7 – SQL Injection
Posted by deepcore under Security (No Respond)