Subscribe via feed.
Archive for April, 2019

[local] Apache 2.4.17 < 2.4.38 – 'apache2ctl graceful' 'logrotate' Local Privilege Escalation

Posted by deepcore under Security (No Respond)

Apache 2.4.17 < 2.4.38 – 'apache2ctl graceful' 'logrotate' Local Privilege Escalation

Tags: ,

[webapps] Bolt CMS 3.6.6 – Cross-Site Request Forgery / Remote Code Execution

Posted by deepcore under Security (No Respond)

Bolt CMS 3.6.6 – Cross-Site Request Forgery / Remote Code Execution

Tags: ,

[webapps] Jobgator – 'experience' SQL Injection

Posted by deepcore under Security (No Respond)

Jobgator – ‘experience’ SQL Injection

Tags: ,

[local] FlexHEX 2.71 – SEH Buffer Overflow (Unicode)

Posted by deepcore under Security (No Respond)

FlexHEX 2.71 – SEH Buffer Overflow (Unicode)

Tags: ,

[webapps] ShoreTel Connect ONSITE < 19.49.1500.0 – Multiple Vulnerabilities

Posted by deepcore under Security (No Respond)

ShoreTel Connect ONSITE < 19.49.1500.0 – Multiple Vulnerabilities

Tags: ,

[webapps] SaLICru -SLC-20-cube3(5) – HTML Injection

Posted by deepcore under Security (No Respond)

SaLICru -SLC-20-cube3(5) – HTML Injection

Tags: ,

[remote] QNAP Netatalk < 3.1.12 – Authentication Bypass

Posted by deepcore under Security (No Respond)

QNAP Netatalk < 3.1.12 – Authentication Bypass

Tags: ,

[webapps] ManageEngine ServiceDesk Plus 9.3 – User Enumeration

Posted by deepcore under Security (No Respond)

ManageEngine ServiceDesk Plus 9.3 – User Enumeration

Tags: ,

[local] Download Accelerator Plus (DAP) 10.0.6.0 – SEH Buffer Overflow

Posted by deepcore under Security (No Respond)

Download Accelerator Plus (DAP) 10.0.6.0 – SEH Buffer Overflow

Tags: ,

[webapps] Tradebox CryptoCurrency – 'symbol' SQL Injection

Posted by deepcore under Security (No Respond)

Tradebox CryptoCurrency – ‘symbol’ SQL Injection

Tags: ,