Andrea ST Filters Service 1.0.64.7 Unquoted Service Path
Posted by deepcore under exploit (No Respond)
Andrea ST Filters Service version 1.0.64.7 suffers from an Andrea ST Filters Service unquoted service path vulnerability.
Archive for April, 2020
School ERP Pro 1.0 SQL Injection
Posted by deepcore under exploit (No Respond)
School ERP Pro version 1.0 suffers from a remote SQL injection vulnerability.
School ERP Pro 1.0 Remote Code Execution
Posted by deepcore under exploit (No Respond)
School ERP Pro version 1.0 suffers from a remote code execution vulnerability.
School ERP Pro 1.0 Arbitrary File Read
Posted by deepcore under exploit (No Respond)
School ERP Pro version 1.0 suffers from an arbitrary file read vulnerability.
Open-AudIT 3.2.2 Command Injection / SQL Injection
Posted by deepcore under exploit (No Respond)
Open-AudIT version 3.2.2 suffers from OS command injection, arbitrary file upload, and remote SQL injection vulnerabilities.
Open-AudIT Professional 3.3.1 Remote Code Execution
Posted by deepcore under exploit (No Respond)
Open-AudIT Professional version 3.3.1 suffers from a remote code execution vulnerability.
NVIDIA Update Service Daemon 1.0.21 Unquoted Service Path
Posted by deepcore under exploit (No Respond)
NVIDIA Update Service Daemon version 1.0.21 suffers from a nvUpdatusService unquoted service path vulnerability.
Gigamon GigaVUE 5.5.01.11 Directory Traversal / File Upload
Posted by deepcore under exploit (No Respond)
Gigamon GigaVUE version 5.5.01.11 suffers from directory traversal and file upload with command execution vulnerabilities. Gigamon has chosen to sunset this product and not offer a patch.
EmEditor 19.8 Insecure File Permissions
Posted by deepcore under exploit (No Respond)
EmEditor version 19.8 suffers from an insecure file permission vulnerability.
hits script 1.0 SQL Injection
Posted by deepcore under exploit (No Respond)
hits script version 1.0 suffers from a remote SQL injection vulnerability.