BMC Smart Reporting 7.3 20180418 XML Injection
Posted by deepcore under exploit (No Respond)
BMC Smart Reporting version 7.3 20180418 suffers from an XML external entity injection vulnerability.
Archive for December, 2019
Microsoft Windows Media Center XML Injection
Posted by deepcore under exploit (No Respond)
Microsoft Windows Media Center suffers from an XML external entity injection vulnerability. This vulnerability was originally released back on December 4, 2016, yet remains unfixed.
WordPress CSS Hero 4.0.3 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
WordPress CSS Hero plugin versions 4.0.3 and below suffer from a cross site scripting vulnerability.
Revive Adserver 4.2 Remote Code Execution
Posted by deepcore under exploit (No Respond)
Revive Adserver version 4.2 suffers from a code execution vulnerability.
SSDWLAB 6.1 Authentication Bypass
Posted by deepcore under exploit (No Respond)
SSDWLAB version 6.1 suffers from an authentication bypass vulnerability.
Fronius Solar Inverter Series Insecure Communication / Path Traversal
Posted by deepcore under exploit (No Respond)
Fronius Solar Inverter Series with software versions below 3.14.1 (HM 1.12.1) suffer from unencrypted communication and path traversal vulnerabilities.
YouPHPTube 7.7 SQL Injection
Posted by deepcore under exploit (No Respond)
YouPHPTube versions 7.7 and below suffer from a remote SQL injection vulnerability in getChat.json.php.
[webapps] Broadcom CA Privilged Access Manager 2.8.2 – Remote Command Execution
Posted by deepcore under Security (No Respond)
[local] Amiti Antivirus 25.0.640 – Unquoted Service Path
Posted by deepcore under Security (No Respond)
[local] NETGATE Data Backup 3.0.620 – 'NGDatBckpSrv' Unquoted Service Path
Posted by deepcore under Security (No Respond)
