Responsive Online Blog 1.0 SQL Injection
Posted by deepcore under exploit (No Respond)
Responsive Online Blog version 1.0 suffers from a remote SQL injection vulnerability.
Archive for June, 2020
[webapps] BSA Radar 1.6.7234.24750 – Persistent Cross-Site Scripting
Posted by deepcore under Security (No Respond)
Frigate 2.02 Denial Of Service
Posted by deepcore under exploit (No Respond)
Frigate version 2.02 suffers from a denial of service vulnerability.
Mereo 1.9.4 Denial Of Service
Posted by deepcore under exploit (No Respond)
Mereo version 1.9.4 suffers from a remote HTTP server denial of service vulnerability.
Trend Micro Web Security (Virtual Appliance) Remote Code Execution
Posted by deepcore under exploit (No Respond)
This Metasploit module exploits multiple vulnerabilities together in order to achieve a remote code execution. Unauthenticated users can execute a terminal command under the context of the root user. The specific flaw exists within the LogSettingHandler class of administrator interface software. When parsing the mount_device parameter, the process does not properly validate a user-supplied string […]
Online Student Enrollment System 1.0 Arbitrary File Upload
Posted by deepcore under exploit (No Respond)
Online Student Enrollment System version 1.0 suffers from an unauthenticated arbitrary file vulnerability.
FileRun 2019.05.21 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
FileRun version 2019.05.21 suffers from a reflective cross site scripting vulnerability.
WebPort 1.19.1 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
WebPort version 1.19.1 suffers from multiple reflective cross site scripting vulnerabilities.
Odoo 12.0 Local File Inclusion
Posted by deepcore under exploit (No Respond)
Odoo version 12.0 suffers from a local file inclusion vulnerability.
Student Enrollment 1.0 Remote Code Execution
Posted by deepcore under exploit (No Respond)
Student Enrollment version 1.0 suffers from an unauthenticated remote code execution vulnerability.