ProficySCADA For iOS 5.0.25920 Denial Of Service
Posted by deepcore under exploit (No Respond)
ProficySCADA for iOS version 5.0.25920 suffers from a denial of service vulnerability.
Archive for March, 2020
Google Chrome 80.0.3987.87 Denial Of Service
Posted by deepcore under exploit (No Respond)
Google Chrome version 80.0.3987.87 heap-corruption remote denial of service proof of concept exploit.
CyberArk PSMP 10.9.1 Policy Restriction Bypass
Posted by deepcore under exploit (No Respond)
CyberArk PSMP versions 10.9.1 and below suffer from a policy restriction bypass vulnerability.
EnovaNet Chateau-Thierry FormaLog WebService02 eChampagne 7.0 Cross Site Scripting / SQL Injection
Posted by deepcore under exploit (No Respond)
EnovaNet Chateau-Thierry FormaLog WebService02 eChampagne version 7.0 suffers from cross site scripting and remote SQL injection vulnerabilities.
rConfig 3.9.4 Remote Command Injection
Posted by deepcore under exploit (No Respond)
rConfig version 3.9.4 suffers from a search.crud.php remote command injection vulnerability.
Joomla HDWPlayer 4.2 SQL Injection
Posted by deepcore under exploit (No Respond)
Joomla HDWPlayer component version 4.2 suffers from a remote SQL injection vulnerability.
FIBARO System Home Center 5.021 Remote File Inclusion / XSS
Posted by deepcore under exploit (No Respond)
FIBARO System Home Center version 5.021 suffers from cross site scripting and remote file inclusion vulnerabilities.
Horde 5.2.22 CSV Import Code Execution
Posted by deepcore under exploit (No Respond)
The Horde_Data module version 2.1.4 (and before) present in Horde Groupware version 5.2.22 allows authenticated users to inject arbitrary PHP code thus achieving remote code execution the server hosting the web application.
[webapps] UCM6202 1.0.18.13 – Remote Command Injection
Posted by deepcore under Security (No Respond)
[local] Veyon 4.3.4 – 'VeyonService' Unquoted Service Path
Posted by deepcore under Security (No Respond)