MyBB 1.8.25 SQL Injection
Posted by deepcore under exploit (No Respond)
MyBB version 1.8.25 suffers from a remote SQL injection vulnerability.
Archive for March, 2021
WordPress Mapplic-Lite 1.0 SSRF / Cross Site Scripting
Posted by deepcore under exploit (No Respond)
WordPress Mapplic-Lite plugin version 1.0 suffers from a server-side request forgery vulnerability that can be leveraged to commit cross site scripting attacks.
WordPress Mapplic 6.1 SSRF / Cross Site Scripting
Posted by deepcore under exploit (No Respond)
WordPress Mapplic plugin versions 6.1 and below suffer from a server-side request forgery vulnerability that can be leveraged to commit cross site scripting attacks.
Hi-Rez Studios 5.1.6.3 Unquoted Service Path
Posted by deepcore under exploit (No Respond)
Hi-Rez Studios version 5.1.6.3 suffers from an unquoted service path vulnerability.
ELAN Touchpad 15.2.13.1_X64_WHQL Unquoted Service Path
Posted by deepcore under exploit (No Respond)
ELAN Touchpad version 15.2.13.1_X64_WHQL suffers from an unquoted service path vulnerability.
ActivIdentity 8.2 Unquoted Service Path
Posted by deepcore under exploit (No Respond)
ActivIdentity version 8.2 suffers from an unquoted service path vulnerability.
Elodea Event Collector 4.9.3 Unquoted Service Path
Posted by deepcore under exploit (No Respond)
Elodea Event Collector version 4.9.3 suffers from an unquoted service path vulnerability.
Online Reviewer Management System 1.0 SQL Injection
Posted by deepcore under exploit (No Respond)
Online Reviewer Management System version 1.0 remote SQL injection exploit that allows for authentication bypass.
Online Reviewer Management System 1.0 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Online Reviewer Management System version 1.0 suffers from a persistent cross site scripting vulnerability.
Online Reviewer Management System 1.0 Shell Upload
Posted by deepcore under exploit (No Respond)
Online Reviewer Management System version 1.0 suffers from a remote shell upload vulnerability.