[webapps] Gila CMS 1.9.1 – Cross-Site Scripting
Posted by deepcore under Security (No Respond)
Archive for March, 2019
[webapps] MyBB Upcoming Events Plugin 1.32 – Cross-Site Scripting
Posted by deepcore under Security (No Respond)
[remote] BMC Patrol Agent – Privilege Escalation Code Execution Execution (Metasploit)
Posted by deepcore under Security (No Respond)
BMC Patrol Agent – Privilege Escalation Code Execution Execution (Metasploit)
Tags: 0day, remote exploit[webapps] TheCarProject 2 – Multiple SQL Injection
Posted by deepcore under Security (No Respond)
[dos] WinAVI iPod/3GP/MP4/PSP Converter 4.4.2 – Denial of Service
Posted by deepcore under Security (No Respond)
[dos] WinMPG Video Convert 9.3.5 – Denial of Service
Posted by deepcore under Security (No Respond)
Laundry CMS SQL / Iframe Injection
Posted by deepcore under exploit (No Respond)
Laundry CMS suffers from remote SQL injection and iframe injection vulnerabilities.
NetData 1.13.0 HTML Injection
Posted by deepcore under exploit (No Respond)
NetData versions 1.13.0 and below suffer from an html injection vulnerability.
Vembu Storegrid Web Interface 4.4.0 Cross Site Scripting / Information Disclosure
Posted by deepcore under exploit (No Respond)
Vembu Storegrid Web Interface version 4.4.0 suffers from cross site scripting and information leakage vulnerabilities.
CMS Made Simple Showtime2 3.6.2 Arbitrary File Upload
Posted by deepcore under exploit (No Respond)
CMS Made Simple Showtime2 module version 3.6.2 suffers from an authenticated arbitrary file upload vulnerability.