2020 April

Bundeswehr Karriere Cross Site Scripting

Posted by deepcore under exploit (No Respond)

The Bundeswehr Karriere portal suffered from multiple cross site scripting vulnerabilities.

DedeCMS 7.5 SP2 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

DedeCMS version 7.5 SP2 suffers from multiple cross site scripting vulnerabilities.

DedeCMS 7.5 SP2 Persistent Cross Site Scripting

Posted by deepcore under exploit (No Respond)

DedeCMS version 7.5 SP2 suffers from multiple persistent cross site scripting vulnerabilities.

SuperBackup 2.0.5 Persistent Cross Site Scripting

Posted by deepcore under exploit (No Respond)

SuperBackup version 2.0.5 for iOS suffers from a persistent cross site scripting vulnerability.

File Transfer iFamily 2.1 Directory Traversal

Posted by deepcore under exploit (No Respond)

File Transfer iFamily version 2.1 suffers from a directory traversal vulnerability.

Macs Framework 1.14f Cross Site Scripting / SQL Injection

Posted by deepcore under exploit (No Respond)

Macs Framework version 1.14f suffers from cross site scripting and remote SQL injection vulnerabilities.

SeedDMS 5.1.18 Persistent Cross Site Scripting

Posted by deepcore under exploit (No Respond)

SeedDMS version 5.1.18 suffers from multiple persistent cross site scripting vulnerabilities.

AirDisk Pro 5.5.3 Persistent Cross Site Scripting

Posted by deepcore under exploit (No Respond)

AirDisk Pro version 5.5.3 for iOS suffers from multiple persistent cross site scripting vulnerabilities.

Microsoft Windows NtFilterToken ParentTokenId Incorrect Setting Privilege Escalation

Posted by deepcore under exploit (No Respond)

Microsoft Windows suffers from an NtFilterToken ParentTokenId incorrect setting that allows for elevation of privileges.

Microsoft Windows SE_SERVER_SECURITY Security Descriptor Owner Privilege Escalation

Posted by deepcore under exploit (No Respond)

In Microsoft Windows, by using the poorly documented SE_SERVER_SECURITY Control flag it is possible to set an owner different to the caller, bypassing security checks.

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Bundeswehr Karriere Cross Site Scripting

DedeCMS 7.5 SP2 Cross Site Scripting

DedeCMS 7.5 SP2 Persistent Cross Site Scripting

SuperBackup 2.0.5 Persistent Cross Site Scripting

File Transfer iFamily 2.1 Directory Traversal

Macs Framework 1.14f Cross Site Scripting / SQL Injection

SeedDMS 5.1.18 Persistent Cross Site Scripting

AirDisk Pro 5.5.3 Persistent Cross Site Scripting

Microsoft Windows NtFilterToken ParentTokenId Incorrect Setting Privilege Escalation

Microsoft Windows SE_SERVER_SECURITY Security Descriptor Owner Privilege Escalation

Tabs Switcher

Categories

Archives

Meta

BLOGROLL