PlaceOS 1.2109.1 Open Redirection
Posted by deepcore under exploit (No Respond)
PlaceOS version 1.2109.1 suffers from an open redirection vulnerability.
Archive for September, 2021
Covid Vaccination Scheduler System 1.0 SQL Injection / Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Covid Vaccination Scheduler System version 1.0 suffers from cross site scripting and remote SQL injection vulnerabilities. Original discovery of SQL injection in this version is attributed to faisalfs10x in July of 2021.
OpenSIS 8.0 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
OpenSIS version 8.0 suffers from a cross site scripting vulnerability.
WordPress Select All Categories And Taxonomies 1.3.1 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
WordPress Select All Categories And Taxonomies plugin version 1.3.1 suffers from a cross site scripting vulnerability.
WordPress Redirect 404 To Parent 1.3.0 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
WordPress Redirect 404 to Parent plugin version 1.3.0 suffers from a cross site scripting vulnerability.
Storage Unit Rental Management System 1.0 Shell Upload
Posted by deepcore under exploit (No Respond)
Storage Unit Rental Management System version 1.0 suffers from a remote shell upload vulnerability.
Google Extensible Service Proxy Header Forgery
Posted by deepcore under exploit (No Respond)
Google’s Extensible Service Proxy suffers from a header forgery vulnerability.
Mitrastar GPT-2541GNAC-N1 Privilege Escalation
Posted by deepcore under exploit (No Respond)
Mitrastar GPT-2541GNAC-N1 suffers from a privilege escalation vulnerability that provides root privileges.
Pet Shop Management System 1.0 Shell Upload
Posted by deepcore under exploit (No Respond)
Pet Shop Management System version 1.0 suffers from a remote shell upload vulnerability.
[webapps] Pharmacy Point of Sale System 1.0 – 'Multiple' SQL Injection (SQLi)
Posted by deepcore under Security (No Respond)