2021 March

Project Expense Monitoring System 1.0 Authentication Bypass

Posted by deepcore under exploit (No Respond)

Project Expense Monitoring System version 1.0 suffers from an authentication bypass vulnerability that allows for administrative account creation.

SyncBreeze 10.1.16 Buffer Overflow

Posted by deepcore under exploit (No Respond)

SyncBreeze version 10.1.16 suffers from an xml parsing stack-based buffer overflow vulnerability.

Health Center Patient Record Management System 1.0 SQL Injection

Posted by deepcore under exploit (No Respond)

Health Center Patient Record Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

Health Center Patient Record Management System 1.0 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

Health Center Patient Record Management System version 1.0 suffers from a persistent cross site scripting vulnerability.

IRC-Worm.Win32.Jane.a Authentication Bypass / Code Execution

Posted by deepcore under exploit (No Respond)

IRC-Worm.Win32.Jane.a malware suffers from bypass and code execution vulnerabilities.

GetSimple CMS 3.3.16 Cross Site Scripting / Shell Upload

Posted by deepcore under exploit (No Respond)

GetSimple CMS version 3.3.16 cross site scripting to remote shell upload exploit.

IRC-Worm.Win32.Jane.a Authentication Bypass / Man-In-The-Middle

Posted by deepcore under exploit (No Respond)

IRC-Worm.Win32.Jane.a malware suffers from bypass and man-in-the-middle vulnerabilities.

Openlitespeed 1.7.9 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

Openlitespeed version 1.7.9 suffers from a persistent cross site scripting vulnerability.

http://www.secondarycm.go.th/Fighter.html

Posted by deepcore under defacement (No Respond)

http://www.secondarycm.go.th/Fighter.html notified by Royal Battler BD

Tags: defacement

[webapps] CourseMS 2.1 – 'name' Stored XSS

Posted by deepcore under Security (No Respond)

CourseMS 2.1 – ‘name’ Stored XSS

Tags: 0day, remote exploit

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Project Expense Monitoring System 1.0 Authentication Bypass

SyncBreeze 10.1.16 Buffer Overflow

Health Center Patient Record Management System 1.0 SQL Injection

Health Center Patient Record Management System 1.0 Cross Site Scripting

IRC-Worm.Win32.Jane.a Authentication Bypass / Code Execution

GetSimple CMS 3.3.16 Cross Site Scripting / Shell Upload

IRC-Worm.Win32.Jane.a Authentication Bypass / Man-In-The-Middle

Openlitespeed 1.7.9 Cross Site Scripting

http://www.secondarycm.go.th/Fighter.html

[webapps] CourseMS 2.1 – 'name' Stored XSS

Tabs Switcher

Categories

Archives

Meta

BLOGROLL