Backdoor.Win32.XRat.d Code Execution
Posted by deepcore under exploit (No Respond)
Backdoor.Win32.XRat.d malware suffers from a code execution vulnerability.
Archive for June, 2021
FreeFloat FTP Server 1.0 Denial Of Service
Posted by deepcore under exploit (No Respond)
FreeFloat FTP Server version 1.0 SIZE denial of service exploit.
WordPress Visitors-App 0.3 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
WordPress Visitors-App plugin version 0.3 suffers from a persistent cross site scripting vulnerability.
Internet Explorer jscript9.dll Memory Corruption
Posted by deepcore under exploit (No Respond)
There is a vulnerability in jscript9 that could potentially be exploited to execute arbitrary code when viewing an attacker-controlled website in Internet Explorer. The vulnerability has been confirmed on Windows 10 64-bit with the latest security patches applied.
[webapps] WordPress Plugin visitors-app 0.3 – 'user-agent' Stored Cross-Site Scripting (XSS)
Posted by deepcore under Security (No Respond)
WordPress Plugin visitors-app 0.3 – ‘user-agent’ Stored Cross-Site Scripting (XSS)
Tags: 0day, remote exploit[webapps] OpenCart 3.0.3.7 – 'Change Password' Cross-Site Request Forgery (CSRF)
Posted by deepcore under Security (No Respond)
[webapps] OpenCart 3.0.3.6 – 'subject' Stored Cross-Site Scripting
Posted by deepcore under Security (No Respond)
[webapps] Intelbras Router RF 301K – 'DNS Hijacking' Cross-Site Request Forgery (CSRF)
Posted by deepcore under Security (No Respond)
Intelbras Router RF 301K – ‘DNS Hijacking’ Cross-Site Request Forgery (CSRF)
Tags: 0day, remote exploitTrojan-Dropper.Win32.Googite.a Unauthenticated Open Proxy
Posted by deepcore under exploit (No Respond)
Trojan-Dropper.Win32.Googite.a malware suffers from an unauthenticated open proxy vulnerability.
NBMonitor 1.6.8 Denial Of Service
Posted by deepcore under exploit (No Respond)
NBMonitor version 1.6.8 suffers from a denial of service vulnerability.