ActiveFax Server 6.92 Build 0316 Denial Of Service
Posted by deepcore under exploit (No Respond)
ActiveFax Server version 6.92 build 0316 POP3 server denial of service exploit.
Archive for October, 2019
Express Invoice 7.12 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Express Invoice version 7.12 suffers from a persistent cross site scripting vulnerability.
Kirona-DRS 5.5.3.5 Information Disclosure
Posted by deepcore under exploit (No Respond)
Kirona-DRS version 5.5.3.5 suffers from an information disclosure vulnerability.
ASUS RT-N10+ 2.0.3.4 CSRF / XSS / Command Execution
Posted by deepcore under exploit (No Respond)
ASUS RT-N10+ with firmware version 2.0.3.4 suffers from cross site request forgery and cross site scripting vulnerabilities that can assist with achieving command execution.
OpenProject 10.0.1 / 9.0.3 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
OpenProject versions 9.0.3 and below and 10.0.1 and below suffer from multiple cross site scripting vulnerabilities.
Podman / Varlink Remote Code Execution
Posted by deepcore under exploit (No Respond)
Remote exploit for Podman when configured with Varlink that allows for remote command execution, denial of service, directory traversal, and information disclosure vulnerabilities.
[local] ActiveFax Server 6.92 Build 0316 – 'ActiveFaxServiceNT' Unquoted Service Path
Posted by deepcore under Security (No Respond)
ActiveFax Server 6.92 Build 0316 – ‘ActiveFaxServiceNT’ Unquoted Service Path
Tags: 0day, remote exploit[remote] Podman & Varlink 1.5.1 – Remote Code Execution
Posted by deepcore under Security (No Respond)
[local] sudo 1.2.27 – Security Bypass
Posted by deepcore under Security (No Respond)
[webapps] Bolt CMS 3.6.10 – Cross-Site Request Forgery
Posted by deepcore under Security (No Respond)