Subscribe via feed.
Archive for May, 2020

[webapps] Joomla! Plugin XCloner Backup 3.5.3 – Local File Inclusion (Authenticated)

Posted by deepcore under Security (No Respond)

Joomla! Plugin XCloner Backup 3.5.3 – Local File Inclusion (Authenticated)

Tags: ,

[local] StreamRipper32 2.6 – Buffer Overflow (PoC)

Posted by deepcore under Security (No Respond)

StreamRipper32 2.6 – Buffer Overflow (PoC)

Tags: ,

[webapps] Open-AudIT 3.3.0 – Reflective Cross-Site Scripting (Authenticated)

Posted by deepcore under Security (No Respond)

Open-AudIT 3.3.0 – Reflective Cross-Site Scripting (Authenticated)

Tags: ,

[webapps] OpenEMR 5.0.1 – Remote Code Execution

Posted by deepcore under Security (No Respond)

OpenEMR 5.0.1 – Remote Code Execution

Tags: ,

[webapps] Pi-hole 4.4.0 – Remote Code Execution (Authenticated)

Posted by deepcore under Security (No Respond)

Pi-hole 4.4.0 – Remote Code Execution (Authenticated)

Tags: ,

Composr CMS 10.0.30 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

Composr CMS version 10.0.30 suffers from a persistent cross site scripting vulnerability.

PHP-Fusion 9.03.50 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

PHP-Fusion version 9.03.50 has been found susceptible to additional methods of persistent cross site scripting. Initial findings in this version were discovered by SunCSR.

OpenEDX Ironwood 2.5 Remote Code Execution

Posted by deepcore under exploit (No Respond)

OpenEDX platform Ironwood version 2.5 suffers from a remote code execution vulnerability.

Forma.LMS 5.6.40 Cross Site Request Forgery

Posted by deepcore under exploit (No Respond)

Forma.LMS version 5.6.40 suffers from a cross site request forgery vulnerability.

AbsoluteTelnet 11.21 Denial Of Service

Posted by deepcore under exploit (No Respond)

AbsoluteTelnet version 11.21 suffers from multiple denial of service vulnerabilities.