Odin Secure FTP Expert 7.6.3 Site Info Denial Of Service
Posted by deepcore under exploit (No Respond)
Odin Secure FTP Expert version 7.6.3 Site Info denial of service proof of concept exploit.
Archive for March, 2020
DesignMasterEvents CMS 1.0 SQL Injection / Cross Site Scripting
Posted by deepcore under exploit (No Respond)
DesignMasterEvents CMS version 1.0 suffers from cross site scripting and remote SQL injection vulnerabilities.
WordPress Event-Registration 5.43 Arbitrary File Upload
Posted by deepcore under exploit (No Respond)
WordPress Event-Registration plugin version 5.43 suffers from an arbitrary file upload vulnerability.
Zen Load Balancer 3.10.1 Remote Code Execution
Posted by deepcore under exploit (No Respond)
Zen Load Balancer version 3.10.1 suffers from a remote code execution vulnerability.
Joomla Fabrik 3.9.11 Directory Traversal
Posted by deepcore under exploit (No Respond)
Joomla Fabrik component version 3.9.11 suffers from a directory traversal vulnerability.
10-Strike Network Inventory Explorer 9.03 Buffer Overflow
Posted by deepcore under exploit (No Respond)
10-Strike Network Inventory Explorer version 9.03 Read-from-file buffer overflow exploit that uses SEH and ROP.
[remote] DLINK DWL-2600 – Authenticated Remote Command Injection (Metasploit)
Posted by deepcore under Security (No Respond)
[webapps] Grandstream UCM6200 Series CTI Interface – 'user_password' SQL Injection
Posted by deepcore under Security (No Respond)
[dos] FlashFXP 4.2.0 Build 1730 – Denial of Service (PoC)
Posted by deepcore under Security (No Respond)
Redis Replication Code Execution
Posted by deepcore under exploit (No Respond)
This Metasploit module can be used to leverage the extension functionality added since Redis 4.0.0 to execute arbitrary code. To transmit the given extension it makes use of the feature of Redis which called replication between master and slave.