Linksys RE6500 1.0.11.001 Remote Code Execution
Posted by deepcore under exploit (No Respond)
Linksys RE6500 version 1.0.11.001 unauthenticated remote code execution exploit.
Archive for December, 2020
Content Management System 1.0 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Content Management System version 1.0 suffers from a persistent cross site scripting vulnerability.
Content Management System 1.0 SQL Injection
Posted by deepcore under exploit (No Respond)
Content Management System version 1.0 suffers from multiple remote SQL injection vulnerabilities.
Alumni Management System 1.0 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Alumni Management System version 1.0 suffers from a persistent cross site scripting vulnerability.
Victor CMS 1.0 SQL Injection
Posted by deepcore under exploit (No Respond)
Victor CMS version 1.0 suffers from multiple authenticated remote SQL injection vulnerabilities. SQL injection was originally discovered in this version in May of 2020 by BKpatron.
Online Tours And Travels Management System 1.0 SQL Injection
Posted by deepcore under exploit (No Respond)
Online Tours and Travels Management System version 1.0 suffers from a remote SQL injection vulnerability.
Employee Record System 1.0 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Employee Record System version 1.0 suffers from multiple persistent cross site scripting vulnerabilities.
Online Health Card System 1.0 SQL Injection
Posted by deepcore under exploit (No Respond)
Online Health Care System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
PHPJabbers Appointment Scheduler 2.3 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
PHPJabbers Appointment Scheduler version 2.3 suffers from a cross site scripting vulnerability.
Trend Micro IWSVA CSRF / XSS / Bypass / SSRF / Code Execution
Posted by deepcore under exploit (No Respond)
Trend Micro InterScan Web Security Virtual Appliance (IWSVA) versions below 6.5 SP2 EN Patch 4 Build 1919 suffers from bypass, command execution, cross site request forgery, cross site scripting, and server-side request forgery vulnerabilities.