Apache Struts 2.5.20 Double OGNL Evaluation
Posted by deepcore under exploit (No Respond)
Apache Struts version 2.5.20 double OGNL evaluation exploit.
Archive for November, 2020
http://backoffice.onec.go.th
Posted by deepcore under defacement (No Respond)
http://backoffice.onec.go.th notified by ./Anon666Txploit
Tags: defacementhttp://www.nah.go.th/z.php
Posted by deepcore under defacement (No Respond)
http://www.nah.go.th/z.php notified by ./Anon666Txploit
Tags: defacementhttp://envfund.onep.go.th/ay.htm
Posted by deepcore under defacement (No Respond)
http://envfund.onep.go.th/ay.htm notified by D3D0T
Tags: defacement[remote] ZeroLogon – Netlogon Elevation of Privilege
Posted by deepcore under Security (No Respond)
[webapps] BigBlueButton 2.2.25 – Arbitrary File Disclosure and Server-Side Request Forgery
Posted by deepcore under Security (No Respond)
BigBlueButton 2.2.25 – Arbitrary File Disclosure and Server-Side Request Forgery
Tags: 0day, remote exploit[webapps] WordPress Plugin WPForms 1.6.3.1 – Persistent Cross Site Scripting (Authenticated)
Posted by deepcore under Security (No Respond)
WordPress Plugin WPForms 1.6.3.1 – Persistent Cross Site Scripting (Authenticated)
Tags: 0day, remote exploitAdvanced System Care Service 13 Unquoted Service Path
Posted by deepcore under exploit (No Respond)
Advanced System Care Service version 13 suffers from an unquoted service path vulnerability.
Pandora FMS 7.0 NG 749 SQL Injection
Posted by deepcore under exploit (No Respond)
Pandora FMS version 7.0 NG 749 suffers from a remote SQL injection vulnerability.
KiteService 1.2020.1113.1 Unquoted Service Path
Posted by deepcore under exploit (No Respond)
KiteService version 1.2020.1113.1 suffers from an unquoted service path vulnerability.
