Online-Exam-System 2015 SQL Injection
Posted by deepcore under exploit (No Respond)
Online-Exam-System 2015 suffers from a remote SQL injection vulnerability.
Archive for May, 2020
QNAP QTS And Photo Station 6.0.3 Remote Command Execution
Posted by deepcore under exploit (No Respond)
QNAP QTS and Photo Station version 6.0.3 suffers from a remote command execution vulnerability.
Firefox Default Content Process DACL Sandbox Escape
Posted by deepcore under exploit (No Respond)
The Firefox content processes do not sufficiently lockdown access control which can result in a sandbox escape.
Pi-Hole 4.3.2 DHCP MAC OS Command Execution
Posted by deepcore under exploit (No Respond)
This Metasploit module exploits a command execution in Pi-Hole versions 4.3.2 and below. A new DHCP static lease is added with a MAC address which includes a remote code execution issue.
[webapps] Crystal Shard http-protection 0.2.0 – IP Spoofing Bypass
Posted by deepcore under Security (No Respond)
[webapps] WordPress Plugin Multi-Scheduler 1.0.0 – Cross-Site Request Forgery (Delete User)
Posted by deepcore under Security (No Respond)
WordPress Plugin Multi-Scheduler 1.0.0 – Cross-Site Request Forgery (Delete User)
Tags: 0day, remote exploitBIND TSIG Denial Of Service
Posted by deepcore under exploit (No Respond)
BIND TSIG denial of service exploit.
WordPress Drag And Drop File Upload Contact Form 1.3.3.2 Shell Upload
Posted by deepcore under exploit (No Respond)
WordPress Drag and Drop File Upload Contact Form plugin version 1.3.3.2 suffers from a remote shell upload vulnerability.
StreamRipper32 2.6 Buffer Overflow
Posted by deepcore under exploit (No Respond)
StreamRipper32 version 2.6 buffer overflow proof of concept exploit.
Pi-hole 4.4.0 Remote Code Execution
Posted by deepcore under exploit (No Respond)
Pi-hole version 4.4.0 suffers from a remote code execution vulnerability.