Subscribe via feed.
Archive for June, 2021

[webapps] Simple Client Management System 1.0 – 'uemail' SQL Injection (Unauthenticated)

Posted by deepcore under Security (No Respond)

Simple Client Management System 1.0 – ‘uemail’ SQL Injection (Unauthenticated)

Tags: ,

[webapps] Seeddms 5.1.10 – Remote Command Execution (RCE) (Authenticated)

Posted by deepcore under Security (No Respond)

Seeddms 5.1.10 – Remote Command Execution (RCE) (Authenticated)

Tags: ,

[local] SAPSprint 7.60 – 'SAPSprint' Unquoted Service Path

Posted by deepcore under Security (No Respond)

SAPSprint 7.60 – ‘SAPSprint’ Unquoted Service Path

Tags: ,

[webapps] Huawei dg8045 – Authentication Bypass

Posted by deepcore under Security (No Respond)

Huawei dg8045 – Authentication Bypass

Tags: ,

[webapps] TP-Link TL-WR841N – Command Injection

Posted by deepcore under Security (No Respond)

TP-Link TL-WR841N – Command Injection

Tags: ,

[webapps] Adobe ColdFusion 8 – Remote Command Execution (RCE)

Posted by deepcore under Security (No Respond)

Adobe ColdFusion 8 – Remote Command Execution (RCE)

Tags: ,

[webapps] VMware vCenter Server RCE 6.5 / 6.7 / 7.0 – Remote Code Execution (RCE) (Unauthenticated)

Posted by deepcore under Security (No Respond)

VMware vCenter Server RCE 6.5 / 6.7 / 7.0 – Remote Code Execution (RCE) (Unauthenticated)

Tags: ,

Backdoor.Win32.Hupigon.aaio Buffer Overflow

Posted by deepcore under exploit (No Respond)

Backdoor.Win32.Hupigon.aaio malware suffers from a buffer overflow vulnerability.

Simple CRM 3.0 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

Simple CRM version 30 suffers from a persistent cross site scripting vulnerability.

Simple CRM 3.0 Cross Site Request Forgery

Posted by deepcore under exploit (No Respond)

Simple CRM version 3.0 suffers from a cross site request forgery vulnerability.