[webapps] Xfilesharing 2.5.1 – Arbitrary File Upload
Posted by deepcore under Security (No Respond)
Archive for November, 2019
[local] oXygen XML Editor 21.1.1 – XML External Entity Injection
Posted by deepcore under Security (No Respond)
[dos] Siemens Desigo PX 6.00 – Denial of Service (PoC)
Posted by deepcore under Security (No Respond)
Linear eMerge E3 1.00-06 Directory Traversal
Posted by deepcore under exploit (No Respond)
Linear eMerge E3 versions 1.00-06 and below suffer from file disclosure and traversal vulnerabilities.
Linear eMerge E3 1.00-06 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Linear eMerge E3 versions 1.00-06 and below suffer from a reflective cross site scripting vulnerability.
Linear eMerge E3 1.00-06 Arbitrary File Upload Remote Root Code Execution
Posted by deepcore under exploit (No Respond)
Linear eMerge E3 versions 1.00-06 and below arbitrary file upload remote root code execution exploit.
Linear eMerge E3 1.00-06 card_scan.php Command Injection
Posted by deepcore under exploit (No Respond)
Linear eMerge E3 versions 1.00-06 and below unauthenticated command injection remote root exploit that leverages card_scan.php.
Linear eMerge E3 1.00-06 card_scan_decoder.php Command Injection
Posted by deepcore under exploit (No Respond)
Linear eMerge E3 versions 1.00-06 and below unauthenticated command injection remote root exploit that leverages card_scan_decoder.php.
Computrols CBAS-Web 19.0.0 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Computrols CBAS-Web versions 19.0.0 and below suffer from a reflective cross site scripting vulnerability.
Optergy BMS 2.0.3a Remote Root
Posted by deepcore under exploit (No Respond)
Optergy BMS versions 2.0.3a and below unauthenticated remote root exploit. Related CVE number: CVE-2019-7276.
