Chrome storage::BlobBuilderFromStream Uninitializaed On-Stack Pointer
Posted by deepcore under exploit (No Respond)
Chrome suffers from making use of an uninitialized on-stack pointer in storage::BlobBuilderFromStream.
Archive for February, 2022
Backdoor.Win32.Small.er Code Execution
Posted by deepcore under exploit (No Respond)
Backdoor.Win32.Small.er malware suffers from a code execution vulnerability.
Hospital Management System 4.0 SQL Injection
Posted by deepcore under exploit (No Respond)
Hospital Management System version 4.0 suffers from multiple remote SQL injection vulnerabilities. Original discovered of SQL injection in this version is attributed to Metin Yunus Kandemir in January of 2020.
WordPress International SMS For Contact Form 7 Integration 1.2 XSS
Posted by deepcore under exploit (No Respond)
WordPress International SMS for Contact Form 7 Integration plugin version 1.2 suffers from a cross site scripting vulnerability.
[webapps] WordPress Plugin Simple Job Board 2.9.3 – Local File Inclusion
Posted by deepcore under Security (No Respond)
[remote] Wing FTP Server 4.3.8 – Remote Code Execution (RCE) (Authenticated)
Posted by deepcore under Security (No Respond)
[webapps] WordPress Plugin International Sms For Contact Form 7 Integration V1.2 – Cross Site Scripting (XSS)
Posted by deepcore under Security (No Respond)
WordPress Plugin International Sms For Contact Form 7 Integration V1.2 – Cross Site Scripting (XSS)
Tags: 0day, remote exploit[webapps] Hospital Management System 4.0 – 'multiple' SQL Injection
Posted by deepcore under Security (No Respond)
[webapps] FileBrowser 2.17.2 – Cross Site Request Forgery (CSRF) to Remote Code Execution (RCE)
Posted by deepcore under Security (No Respond)
FileBrowser 2.17.2 – Cross Site Request Forgery (CSRF) to Remote Code Execution (RCE)
Tags: 0day, remote exploit[webapps] Hotel Reservation System 1.0 – SQLi (Unauthenticated)
Posted by deepcore under Security (No Respond)