Online Discussion Forum Site 1.0 Remote Code Execution
Posted by deepcore under exploit (No Respond)
Online Discussion Forum Site version 1.0 suffers from a remote code execution vulnerability.
Archive for May, 2020
OpenEMR Remote Code Execution
Posted by deepcore under exploit (No Respond)
OpenEMR versions prior to 5.0.1 suffer from a remote code execution vulnerability.
Joomla XCloner Backup 3.5.3 Local File Disclosure
Posted by deepcore under exploit (No Respond)
Joomla XCloner Backup version 3.5.3 suffers from a local file disclosure vulnerability.
Pi-Hole 3.3 Command Execution
Posted by deepcore under exploit (No Respond)
This Metasploit module exploits a command execution vulnerability in Pi-Hole versions 3.3 and below. When adding a new domain to the whitelist, it is possible to chain a command to the domain that is run on the OS.
[webapps] Kuicms PHP EE 2.0 – Persistent Cross-Site Scripting
Posted by deepcore under Security (No Respond)
[webapps] osTicket 1.14.1 – 'Ticket Queue' Persistent Cross-Site Scripting
Posted by deepcore under Security (No Respond)
[webapps] LimeSurvey 4.1.11 – 'Permission Roles' Persistent Cross-Site Scripting
Posted by deepcore under Security (No Respond)
[webapps] Online Marriage Registration System 1.0 – Persistent Cross-Site Scripting
Posted by deepcore under Security (No Respond)
Online Marriage Registration System 1.0 – Persistent Cross-Site Scripting
Tags: 0day, remote exploit[webapps] osTicket 1.14.1 – 'Saved Search' Persistent Cross-Site Scripting
Posted by deepcore under Security (No Respond)
[webapps] WordPress Plugin Drag and Drop File Upload Contact Form 1.3.3.2 – Remote Code Execution
Posted by deepcore under Security (No Respond)
WordPress Plugin Drag and Drop File Upload Contact Form 1.3.3.2 – Remote Code Execution
Tags: 0day, remote exploit