Subscribe via feed.
Archive for May, 2021

Microsoft ACL Shortcomings

Posted by deepcore under exploit (No Respond)

The way Microsoft Windows implements file security appears to have some significant shortcomings.

rxvt 2.7.0 / rxvt-unicode 9.22 Code Execution

Posted by deepcore under exploit (No Respond)

rxvt version 2.7.0 and rxvt-unicode version 9.22 incorrectly handles ANSI escape sequences allowing for arbitrary code execution.

rxvt 2.7.0 / rxvt-unicode 9.22 Code Execution

Posted by deepcore under exploit (No Respond)

rxvt version 2.7.0 and rxvt-unicode version 9.22 incorrectly handles ANSI escape sequences allowing for arbitrary code execution.

[webapps] ManageEngine ADSelfService Plus 6.1 – CSV Injection

Posted by deepcore under Security (No Respond)

ManageEngine ADSelfService Plus 6.1 – CSV Injection

Tags: ,

[webapps] In4Suit ERP 3.2.74.1370 – 'txtLoginId' SQL injection

Posted by deepcore under Security (No Respond)

In4Suit ERP 3.2.74.1370 – ‘txtLoginId’ SQL injection

Tags: ,

[dos] WebSSH for iOS 14.16.10 – 'mashREPL' Denial of Service (PoC)

Posted by deepcore under Security (No Respond)

WebSSH for iOS 14.16.10 – ‘mashREPL’ Denial of Service (PoC)

Tags: ,

[local] Visual Studio Code 1.47.1 – Denial of Service (PoC)

Posted by deepcore under Security (No Respond)

Visual Studio Code 1.47.1 – Denial of Service (PoC)

Tags: ,

[webapps] WordPress Plugin Stop Spammers 2021.8 – 'log' Reflected Cross-site Scripting (XSS)

Posted by deepcore under Security (No Respond)

WordPress Plugin Stop Spammers 2021.8 – ‘log’ Reflected Cross-site Scripting (XSS)

Tags: ,

Customer Relationship Management System 1.0 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

Customer Relationship Management System version 1.0 suffers from a persistent cross site scripting vulnerability. Original discovery of persistent cross site scripting in this version is attributed to Richard Jones in May of 2021.

Backdoor.Win32.Delf.abb Insecure Transit

Posted by deepcore under exploit (No Respond)

Backdoor.Win32.Delf.abb malware suffers from insecure transit issues.