2021 October

Backdoor.Win32.LanaFTP.k Heap Corruption

Posted by deepcore under exploit (No Respond)

Backdoor.Win32.LanaFTP.k malware suffers from a heap corruption vulnerability.

Plastic SCM 10.0.16.5622 Improper Access Control

Posted by deepcore under exploit (No Respond)

Plastic SCM version 10.0.16.5622 suffers from an improper access control vulnerability that lets an attacker set the administrative password.

[webapps] Company's Recruitment Management System 1.0 – 'Add New user' Cross-Site Request Forgery (CSRF)

Posted by deepcore under Security (No Respond)

Company’s Recruitment Management System 1.0 – ‘Add New user’ Cross-Site Request Forgery (CSRF)

Tags: 0day, remote exploit

[webapps] Plastic SCM 10.0.16.5622 – WebAdmin Server Access

Posted by deepcore under Security (No Respond)

Plastic SCM 10.0.16.5622 – WebAdmin Server Access

Tags: 0day, remote exploit

[webapps] Support Board 3.3.4 – 'Message' Stored Cross-Site Scripting (XSS)

Posted by deepcore under Security (No Respond)

Support Board 3.3.4 – ‘Message’ Stored Cross-Site Scripting (XSS)

Tags: 0day, remote exploit

[webapps] Company's Recruitment Management System 1.0 – 'description' Stored Cross-Site Scripting (XSS)

Posted by deepcore under Security (No Respond)

Company’s Recruitment Management System 1.0 – ‘description’ Stored Cross-Site Scripting (XSS)

Tags: 0day, remote exploit

[webapps] Mitsubishi Electric & INEA SmartRTU – Reflected Cross-Site Scripting (XSS)

Posted by deepcore under Security (No Respond)

Mitsubishi Electric & INEA SmartRTU – Reflected Cross-Site Scripting (XSS)

Tags: 0day, remote exploit

[webapps] Mitsubishi Electric & INEA SmartRTU – Source Code Disclosure

Posted by deepcore under Security (No Respond)

Mitsubishi Electric & INEA SmartRTU – Source Code Disclosure

Tags: 0day, remote exploit

[webapps] WordPress Plugin Duplicator 1.3.26 – Unauthenticated Arbitrary File Read

Posted by deepcore under Security (No Respond)

WordPress Plugin Duplicator 1.3.26 – Unauthenticated Arbitrary File Read

Tags: 0day, remote exploit

[webapps] Company's Recruitment Management System 1.0. – 'title' Stored Cross-Site Scripting (XSS)

Posted by deepcore under Security (No Respond)

Company’s Recruitment Management System 1.0. – ‘title’ Stored Cross-Site Scripting (XSS)

Tags: 0day, remote exploit

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Backdoor.Win32.LanaFTP.k Heap Corruption

Plastic SCM 10.0.16.5622 Improper Access Control

[webapps] Company's Recruitment Management System 1.0 – 'Add New user' Cross-Site Request Forgery (CSRF)

[webapps] Plastic SCM 10.0.16.5622 – WebAdmin Server Access

[webapps] Support Board 3.3.4 – 'Message' Stored Cross-Site Scripting (XSS)

[webapps] Company's Recruitment Management System 1.0 – 'description' Stored Cross-Site Scripting (XSS)

[webapps] Mitsubishi Electric & INEA SmartRTU – Reflected Cross-Site Scripting (XSS)

[webapps] Mitsubishi Electric & INEA SmartRTU – Source Code Disclosure

[webapps] WordPress Plugin Duplicator 1.3.26 – Unauthenticated Arbitrary File Read

[webapps] Company's Recruitment Management System 1.0. – 'title' Stored Cross-Site Scripting (XSS)

Tabs Switcher

BLOGROLL

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Tabs Switcher

BLOGROLL