[webapps] Bludit 3.9.2 – Authentication Bruteforce Bypass (Metasploit)
Posted by deepcore under Security (No Respond)
Archive for November, 2020
[webapps] Citrix ADC NetScaler – Local File Inclusion (Metasploit)
Posted by deepcore under Security (No Respond)
[webapps] ASUS TM-AC1900 – Arbitrary Command Execution (Metasploit)
Posted by deepcore under Security (No Respond)
Joomla SIGE 3.4.1-FREE / 3.5.3-PRO RFI / Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Joomla Simple Image Gallery Extended (SIGE) extension versions 3.4.1-FREE and 3.5.3-PRO suffer from cross site scripting and remote file inclusion vulnerabilities.
CMSUno 1.6.2 Remote Code Execution
Posted by deepcore under exploit (No Respond)
CMSUno version 1.6.2 user remote code execution exploit. This is a variant of the vulnerability discovered by the same researcher in November of 2020.
Customer Support System 1.0 SQL Injection
Posted by deepcore under exploit (No Respond)
Customer Support System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Customer Support System 1.0 Cross Site Request Forgery
Posted by deepcore under exploit (No Respond)
Customer Support System version 1.0 suffers from a cross site request forgery vulnerability.
Customer Support System 1.0 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Customer Support System version 1.0 suffers from a persistent cross site scripting vulnerability.
Microsoft Windows Local Spooler Bypass
Posted by deepcore under exploit (No Respond)
Microsoft Windows suffers from a local spooler bypass vulnerability.
http://pharmacy.huahinhospital.go.th
Posted by deepcore under defacement (No Respond)
http://pharmacy.huahinhospital.go.th notified by Al Catraz
Tags: defacement
