2021 November

[webapps] YeaLink SIP-TXXXP 53.84.0.15 – 'cmd' Command Injection (Authenticated)

Posted by deepcore under Security (No Respond)

YeaLink SIP-TXXXP 53.84.0.15 – ‘cmd’ Command Injection (Authenticated)

Tags: 0day, remote exploit

Movable Type 7 r.5002 XMLRPC API Remote Command Injection

Posted by deepcore under exploit (No Respond)

This Metasploit module exploits a remote command injection vulnerability in Movable Type versions 7 r.5002 and below.

Google Assistant Authentication Bypass

Posted by deepcore under exploit (No Respond)

Google Assistant suffered from an authentication bypass vulnerability allowing a webpage to execute commands without permission.

Google Assistant Authentication Bypass

Posted by deepcore under exploit (No Respond)

Google Assistant suffered from an authentication bypass vulnerability allowing a webpage to execute commands without permission.

[webapps] Employee and Visitor Gate Pass Logging System 1.0 – 'name' Stored Cross-Site Scripting (XSS)

Posted by deepcore under Security (No Respond)

Employee and Visitor Gate Pass Logging System 1.0 – ‘name’ Stored Cross-Site Scripting (XSS)

Tags: 0day, remote exploit

[webapps] Employee Daily Task Management System 1.0 – 'Name' Stored Cross-Site Scripting (XSS)

Posted by deepcore under Security (No Respond)

Employee Daily Task Management System 1.0 – ‘Name’ Stored Cross-Site Scripting (XSS)

Tags: 0day, remote exploit

Backdoor.Win32.VB.afu Insecure Permissions

Posted by deepcore under exploit (No Respond)

Backdoor.Win32.VB.afu malware suffers from an insecure permissions vulnerability.

FusionPBX 4.5.29 Remote Code Execution

Posted by deepcore under exploit (No Respond)

FusionPBX version 4.5.29 suffers from a remote code execution vulnerability.

Money Transfer Management System 1.0 SQL Injection

Posted by deepcore under exploit (No Respond)

Money Transfer Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

Backdoor.Win32.VB.afu Insecure Transit

Posted by deepcore under exploit (No Respond)

Backdoor.Win32.VB.afu suffers from an insecure transit vulnerability that discloses credentials.

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

[webapps] YeaLink SIP-TXXXP 53.84.0.15 – 'cmd' Command Injection (Authenticated)

Movable Type 7 r.5002 XMLRPC API Remote Command Injection

Google Assistant Authentication Bypass

Google Assistant Authentication Bypass

[webapps] Employee and Visitor Gate Pass Logging System 1.0 – 'name' Stored Cross-Site Scripting (XSS)

[webapps] Employee Daily Task Management System 1.0 – 'Name' Stored Cross-Site Scripting (XSS)

Backdoor.Win32.VB.afu Insecure Permissions

FusionPBX 4.5.29 Remote Code Execution

Money Transfer Management System 1.0 SQL Injection

Backdoor.Win32.VB.afu Insecure Transit

Tabs Switcher

BLOGROLL

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Tabs Switcher

BLOGROLL