Subscribe via feed.
Archive for January, 2021

[webapps] Responsive E-Learning System 1.0 – Unrestricted File Upload to RCE

Posted by deepcore under Security (No Respond)

Responsive E-Learning System 1.0 – Unrestricted File Upload to RCE

Tags: ,

[webapps] Expense Tracker 1.0 – 'Expense Name' Stored Cross-Site Scripting

Posted by deepcore under Security (No Respond)

Expense Tracker 1.0 – ‘Expense Name’ Stored Cross-Site Scripting

Tags: ,

[webapps] WordPress Plugin litespeed cache 3.6 – 'server_ip' Cross-Site Scripting

Posted by deepcore under Security (No Respond)

WordPress Plugin litespeed cache 3.6 – ‘server_ip’ Cross-Site Scripting

Tags: ,

[local] IObit Uninstaller 10 Pro – Unquoted Service Path

Posted by deepcore under Security (No Respond)

IObit Uninstaller 10 Pro – Unquoted Service Path

Tags: ,

[webapps] IPeakCMS 3.5 – Boolean-based blind SQLi

Posted by deepcore under Security (No Respond)

IPeakCMS 3.5 – Boolean-based blind SQLi

Tags: ,

[local] dirsearch 0.4.1 – CSV Injection

Posted by deepcore under Security (No Respond)

dirsearch 0.4.1 – CSV Injection

Tags: ,

http://www.wanyai.go.th

Posted by deepcore under defacement (No Respond)

http://www.wanyai.go.th notified by Xyp3r2667

Tags:

Easy CD And DVD Cover Creator 4.13 Denial Of Service

Posted by deepcore under exploit (No Respond)

Easy CD and DVD Cover Creator version 4.13 denial of service proof of concept exploit.

4images 1.7.11 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

4images versions 1.7.11 and below suffer from a persistent cross site scripting vulnerability. Original discovery of persistent cross site scripting discovered in this version is attributed to a finding by Manuel Garcia Cardenas in 2015.

Hyland Enterprise Search 11.2.2 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

Hyland Enterprise Search version 11.2.2 suffers from a persistent cross site scripting vulnerability.