[webapps] Openlitespeed WebServer 1.7.8 – Command Injection (Authenticated) (2)
Posted by deepcore under Security (No Respond)
Archive for February, 2021
[webapps] b2evolution 6.11.6 – 'tab3' Reflected XSS
Posted by deepcore under Security (No Respond)
[webapps] b2evolution 6.11.6 – 'redirect_to' Open Redirect
Posted by deepcore under Security (No Respond)
[webapps] PEEL Shopping 9.3.0 – 'address' Stored Cross-Site Scripting
Posted by deepcore under Security (No Respond)
WordPress Supsystic Contact Form 1.7.5 XSS / SQL Injection
Posted by deepcore under exploit (No Respond)
WordPress Supsystic Contact Form plugin version 1.7.5 suffers from remote SQL injection and persistent cross site scripting vulnerabilities.
Email-Worm.Win32.Sircam.eb Insecure Permissions
Posted by deepcore under exploit (No Respond)
Email-Worm.Win32.Sircam.eb malware suffers from an insecure permissions vulnerability.
Trojan.Win32.Delf.uq Insecure Permissions
Posted by deepcore under exploit (No Respond)
Trojan.Win32.Delf.uq malware suffers from an insecure permissions vulnerability.
Trojan-Spy.Win32.SpyEyes.awow Insecure Permissions
Posted by deepcore under exploit (No Respond)
Trojan-Spy.Win32.SpyEyes.awow malware suffers from an insecure permissions vulnerability.
WordPress Supsystic Backup 2.3.9 Local File Inclusion
Posted by deepcore under exploit (No Respond)
WordPress Supsystic Backup plugin version 2.3.9 suffers from a local file inclusion vulnerability.
Trojan-Spy.Win32.WebCenter.a Information Disclosure
Posted by deepcore under exploit (No Respond)
Trojan-Spy.Win32.WebCenter.a malware suffers from an information leakage vulnerability.