[webapps] Car Park Management System 1.0 – Authentication Bypass
Posted by deepcore under Security (No Respond)
Archive for May, 2020
OpenZ v3.6.60 ERP – Employee Persistent XSS Vulnerability
Posted by deepcore under exploit (No Respond)
The vulnerability laboratory core research team discovered a persistent cross site vulnerability in the OpenZ v3.6.60 ER…
KeeWeb v1.14.0 – (Notes) Html Inject Web Vulnerability
Posted by deepcore under exploit (No Respond)
The vulnerability laboratory core research team discovered a html injection web vulnerability in the KeeWeb v1.14.0 onli…
Oracle Database 11g Release 2 Unquoted Service Path
Posted by deepcore under exploit (No Respond)
Oracle Database 11g Release 2 suffers from an OracleDBConsoleorcl unquoted service path vulnerability.
Online Scheduling System 1.0 SQL Injection
Posted by deepcore under exploit (No Respond)
Online Scheduling System version 1.0 suffers from a remote SQL injection vulnerability.
PhreeBooks ERP 5.2.5 Remote Command Execution
Posted by deepcore under exploit (No Respond)
PhreeBooks ERP version 5.2.5 suffers from a remote command execution vulnerability.
SimplePHPGal 0.7 Remote File Inclusion
Posted by deepcore under exploit (No Respond)
SimplePHPGal version 0.7 suffers from a remote file inclusion vulnerability.
WordPress WooCommerce Advanced Order Export 3.1.3 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
WordPress WooCommerce Advanced Order Export plugin version 3.1.3 suffers from a cross site scripting vulnerability.
NEC Electra Elite IPK II WebPro 01.03.01 Session Enumeration
Posted by deepcore under exploit (No Respond)
NEC Electra Elite IPK II WebPro version 01.03.01 suffers from a session enumeration vulnerability.
Saltstack 3000.1 Remote Code Execution
Posted by deepcore under exploit (No Respond)
Saltstack version 3000.1 suffers from a remote code execution vulnerability.