Subscribe via feed.
Archive for April, 2020

[webapps] Online Course Registration 2.0 – Authentication Bypass

Posted by deepcore under Security (No Respond)

Online Course Registration 2.0 – Authentication Bypass

Tags: ,

[webapps] Online shopping system advanced 1.0 – 'p' SQL Injection

Posted by deepcore under Security (No Respond)

Online shopping system advanced 1.0 – ‘p’ SQL Injection

Tags: ,

[webapps] Netis E1+ 1.2.32533 – Backdoor Account (root)

Posted by deepcore under Security (No Respond)

Netis E1+ 1.2.32533 – Backdoor Account (root)

Tags: ,

Popcorn Time 6.2 Unquoted Service Path

Posted by deepcore under exploit (No Respond)

Popcorn Time version 6.2 suffers from an unquoted service path vulnerability.

EspoCRM 5.8.5 Privilege Escalation

Posted by deepcore under exploit (No Respond)

EspoCRM version 5.8.5 suffers from a privilege escalation vulnerability.

Edimax EW-7438RPn 1.13 Remote Code Execution

Posted by deepcore under exploit (No Respond)

Edimax EW-7438RPn version 1.13 suffers from a remote code execution vulnerability.

Air Sender 1.0.2 Arbitrary File Upload

Posted by deepcore under exploit (No Respond)

Air Sender version 1.0.2 for iOS suffers from an arbitrary file upload vulnerability.

Furukawa Electric ConsciusMAP 2.8.1 Java Deserialization Remote Code Execution

Posted by deepcore under exploit (No Respond)

Furukawa Electric ConsciusMAP version 2.8.1 java deserialization remote code execution exploit.

Apple Disputes Recent iOS Zero Day Claim

Posted by deepcore under exploit (No Respond)

User Management System 2.0 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

User Management System version 2.0 suffers from a persistent cross site scripting vulnerability.