Palo Alto Networks Cross Site Request Forgery
Posted by deepcore under exploit (No Respond)
The user profile dashboard for paloaltonetworks.com suffered from a cross site request forgery vulnerability.
Archive for September, 2019
Dokeos 1.8.6.1 / 1.8.6.3 Arbitrary File Upload
Posted by deepcore under exploit (No Respond)
Dokeos versions 1.8.6.1 and 1.8.6.3 suffer from a remote file upload vulnerability via an fckeditor.
http://www.atsc.doae.go.th
Posted by deepcore under defacement (No Respond)
http://www.atsc.doae.go.th notified by 0x1998
Tags: defacementhttp://sirattana.sisaket.doae.go.th
Posted by deepcore under defacement (No Respond)
http://sirattana.sisaket.doae.go.th notified by 0x1998
Tags: defacementhttp://phusing.sisaket.doae.go.th
Posted by deepcore under defacement (No Respond)
http://phusing.sisaket.doae.go.th notified by 0x1998
Tags: defacementhttp://huaithapthan.sisaket.doae.go.th
Posted by deepcore under defacement (No Respond)
http://huaithapthan.sisaket.doae.go.th notified by 0x1998
Tags: defacementhttp://sukhothai2.go.th/007.html
Posted by deepcore under defacement (No Respond)
http://sukhothai2.go.th/007.html notified by 0x1998
Tags: defacementDIGIT CENTRIS 4 ERP SQL Injection
Posted by deepcore under exploit (No Respond)
DIGIT CENTRIS 4 ERP suffers from a remote SQL injection vulnerability.
GOautodial 4.0 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
GOautodial version 4.0 suffers from a persistent cross site scripting vulnerability in the CreateEvent flow.
LayerBB 1.1.3 Cross Site Request Forgery
Posted by deepcore under exploit (No Respond)
LayerBB version 1.1.3 suffers from a cross site request forgery vulnerability.