2022 January

HTTP Commander 3.1.9 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

HTTP Commander version 3.1.9 suffers from a persistent cross site scripting vulnerability.

WordPress Contact Form Entries Cross Site Scripting

Posted by deepcore under exploit (No Respond)

WordPress Contact Form Entries plugin versions prior to 1.2.4 suffer from an unauthenticated persistent cross site scripting vulnerability.

Open-AudIT Community 4.2.0 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

Open-AudIT Community versions 4.2.0 and below suffer from a cross site scripting vulnerability.

Linux Garbage Collection Memory Corruption

Posted by deepcore under exploit (No Respond)

Linux suffers from a garbage collection memory corruption vulnerability by resurrecting a file reference through RCU.

[local] VUPlayer 2.49 – '.wax' Local Buffer Overflow (DEP Bypass)

Posted by deepcore under Security (No Respond)

VUPlayer 2.49 – ‘.wax’ Local Buffer Overflow (DEP Bypass)

Tags: 0day, remote exploit

[webapps] Online Railway Reservation System 1.0 – 'Multiple' Stored Cross Site Scripting (XSS) (Unauthenticated)

Posted by deepcore under Security (No Respond)

Online Railway Reservation System 1.0 – ‘Multiple’ Stored Cross Site Scripting (XSS) (Unauthenticated)

Tags: 0day, remote exploit

[webapps] Online Railway Reservation System 1.0 – Admin Account Creation (Unauthenticated)

Posted by deepcore under Security (No Respond)

Online Railway Reservation System 1.0 – Admin Account Creation (Unauthenticated)

Tags: 0day, remote exploit

[webapps] HTTP Commander 3.1.9 – Stored Cross Site Scripting (XSS)

Posted by deepcore under Security (No Respond)

HTTP Commander 3.1.9 – Stored Cross Site Scripting (XSS)

Tags: 0day, remote exploit

[webapps] Online Railway Reservation System 1.0 – Remote Code Execution (RCE) (Unauthenticated)

Posted by deepcore under Security (No Respond)

Online Railway Reservation System 1.0 – Remote Code Execution (RCE) (Unauthenticated)

Tags: 0day, remote exploit

[webapps] Online Railway Reservation System 1.0 – 'id' SQL Injection (Unauthenticated)

Posted by deepcore under Security (No Respond)

Online Railway Reservation System 1.0 – ‘id’ SQL Injection (Unauthenticated)

Tags: 0day, remote exploit

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

HTTP Commander 3.1.9 Cross Site Scripting

WordPress Contact Form Entries Cross Site Scripting

Open-AudIT Community 4.2.0 Cross Site Scripting

Linux Garbage Collection Memory Corruption

[local] VUPlayer 2.49 – '.wax' Local Buffer Overflow (DEP Bypass)

[webapps] Online Railway Reservation System 1.0 – 'Multiple' Stored Cross Site Scripting (XSS) (Unauthenticated)

[webapps] Online Railway Reservation System 1.0 – Admin Account Creation (Unauthenticated)

[webapps] HTTP Commander 3.1.9 – Stored Cross Site Scripting (XSS)

[webapps] Online Railway Reservation System 1.0 – Remote Code Execution (RCE) (Unauthenticated)

[webapps] Online Railway Reservation System 1.0 – 'id' SQL Injection (Unauthenticated)

Tabs Switcher

Categories

Archives

Meta

BLOGROLL

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Tabs Switcher

Categories

Archives

Meta

BLOGROLL