Subscribe via feed.
Archive for December, 2020

[webapps] Invision Community 4.5.4 – 'Field Name' Stored Cross-Site Scripting

Posted by deepcore under Security (No Respond)

Invision Community 4.5.4 – ‘Field Name’ Stored Cross-Site Scripting

Tags: ,

[webapps] Sony BRAVIA Digital Signage 1.7.8 – System API Information Disclosure

Posted by deepcore under Security (No Respond)

Sony BRAVIA Digital Signage 1.7.8 – System API Information Disclosure

Tags: ,

[webapps] Coastercms 5.8.18 – Stored XSS

Posted by deepcore under Security (No Respond)

Coastercms 5.8.18 – Stored XSS

Tags: ,

[webapps] Sony BRAVIA Digital Signage 1.7.8 – Unauthenticated Remote File Inclusion

Posted by deepcore under Security (No Respond)

Sony BRAVIA Digital Signage 1.7.8 – Unauthenticated Remote File Inclusion

Tags: ,

[webapps] mojoPortal forums 2.7.0.0 – 'Title' Persistent Cross-Site Scripting

Posted by deepcore under Security (No Respond)

mojoPortal forums 2.7.0.0 – ‘Title’ Persistent Cross-Site Scripting

Tags: ,

[webapps] Online Matrimonial Project 1.0 – Authenticated Remote Code Execution

Posted by deepcore under Security (No Respond)

Online Matrimonial Project 1.0 – Authenticated Remote Code Execution

Tags: ,

[webapps] EgavilanMedia Address Book 1.0 Exploit – SQLi Auth Bypass

Posted by deepcore under Security (No Respond)

EgavilanMedia Address Book 1.0 Exploit – SQLi Auth Bypass

Tags: ,

TypeSetter 5.1 Cross Site Request Forgery

Posted by deepcore under exploit (No Respond)

TypeSetter version 5.1 suffers from a cross site request forgery vulnerability.

SciKit-Learn 0.23.2 Denial Of Service

Posted by deepcore under exploit (No Respond)

SciKit-Learn version 0.23.2 suffers from a denial of service vulnerability.

WordPress EventON Calendar 3.0.5 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

WordPress EventON Calendar plugin version 3.0.5 suffers from a cross site scripting vulnerability.