flatCore CMS 1.5.5 Cross Site Scripting / Arbitrary File Upload
Posted by deepcore under exploit (No Respond)
flatCore CMS versions 1.5.5 and below suffer from cross site scripting and arbitrary file upload vulnerabilities.
Archive for August, 2020
Orion Application Server 1.5.2b Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Orion Application Server version 1.5.2b suffers from a cross site scripting vulnerability.
BarcodeOCR 19.3.6 Unquoted Service Path
Posted by deepcore under exploit (No Respond)
BarcodeOCR version 19.3.6 suffers from an unquoted service path vulnerability.
House Rental 1.0 SQL Injection
Posted by deepcore under exploit (No Respond)
House Rental version 1.0 SQL injection exploit that changes the administrative password. Written in python.
BarracudaDrive 6.5 Local Privilege Escalation
Posted by deepcore under exploit (No Respond)
BarracudaDrive version 6.5 suffers from a privilege escalation vulnerability.
Tailor MS 1.0 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Tailor MS version 1.0 reflected cross site scripting key logger exploit.
Warehouse Inventory System 1.0 Cross Site Request Forgery
Posted by deepcore under exploit (No Respond)
Warehouse Inventory System version 1.0 suffers from a cross site request forgery vulnerability.
Cisco 7937G All-In-One Exploiter
Posted by deepcore under exploit (No Respond)
This exploit is an all-in-one tool that leverages vulnerabilities described in CVE-2020-16139, CVE-2020-16138, and CVE-2020-16137 against Cisco 7937G devices versions SIP-1-4-5-7 and below.
Cisco 7937G Privilege Escalation
Posted by deepcore under exploit (No Respond)
Cisco 7947G versions SIP-1-4-5-7 and below privilege escalation exploit.
Cisco 7937G Denial Of Service
Posted by deepcore under exploit (No Respond)
Two denial of service exploits for Cisco 7937G versions SIP-1-4-5-7 and below.