Nextar C472 POS DLL Hijacking
Posted by deepcore under exploit (No Respond)
Nextar C472 POS suffers from a dll hijacking vulnerability.
Archive for November, 2021
Polkit Authentication Bypass / Local Privilege Escalation
Posted by deepcore under exploit (No Respond)
This whitepaper provides an overview of a Polkit authentication bypass vulnerability that allows for local privilege escalation.
Apache HTTP Server 2.4.50 CVE-2021-42013 Exploitation
Posted by deepcore under exploit (No Respond)
This document aims at explaining some recent vulnerabilities in Apache HTTP Server that leads to attacks like path traversal and remote code execution.
Opencart 3.0.3.8 Session Injection
Posted by deepcore under exploit (No Respond)
Opencart version 3.0.3.8 suffers from a session injection vulnerability.
Orangescrum 1.8.0 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Orangescrum version 1.8.0 suffers from reflective and persistent cross site scripting vulnerabilities.
Orangescrum 1.8.0 SQL Injection
Posted by deepcore under exploit (No Respond)
Orangescrum version 1.8.0 suffers from multiple remote SQL injection vulnerabilities.
Orangescrum 1.8.0 Privilege Escalation
Posted by deepcore under exploit (No Respond)
Orangescrum version 1.8.0 suffers from a privilege escalation vulnerability.
[webapps] Laundry Booking Management System 1.0 – Remote Code Execution (RCE)
Posted by deepcore under Security (No Respond)
[webapps] opencart 3.0.3.8 – Sessjion Injection
Posted by deepcore under Security (No Respond)
[webapps] orangescrum 1.8.0 – 'Multiple' SQL Injection (Authenticated)
Posted by deepcore under Security (No Respond)