WordPress 404 To 301 2.0.2 SQL Injection
Posted by deepcore under exploit (No Respond)
WordPress 404 to 301 plugin version 2.l0.2 suffers from a remote SQL injection vulnerability.
Archive for February, 2022
WordPress Post Grid 2.1.1 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
WordPress Post Grid plugin version 2.1.1 suffers from a cross site scripting vulnerability.
WordPress Product Slider For WooCommerce 1.13.21 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
WordPress Product Slider for WooCommerce plugin version 1.13.21 suffers from a cross site scripting vulnerability.
Chamilo LMS 1.11.14 Cross Site Scripting / Account Takeover
Posted by deepcore under exploit (No Respond)
Chamilo LMS version 1.11.14 suffers from a persistent cross site scripting vulnerability.
WordPress Download Monitor WordPress 4.4.4 SQL Injection
Posted by deepcore under exploit (No Respond)
WordPress Download Monitor WordPress plugin versions prior to 4.4.5 suffer from a remote SQL injection vulnerability.
Backdoor.Win32.Wollf.m Weak Hardcoded Password
Posted by deepcore under exploit (No Respond)
Backdoor.Win32.Wollf.m malware suffers from a weak hardcoded password vulnerability.
WordPress Domain Check 1.0.16 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
WordPress Domain Check plugin version 1.0.16 suffers from a cross site scripting vulnerability.
PHP Unit 4.8.28 Remote Code Execution
Posted by deepcore under exploit (No Respond)
PHP Unit version 4.8.28 suffers from a remote code execution vulnerability. Related CVE number: CVE-2017-9841. Authored by souzo
WordPress Contact Form Check Tester 1.0.2 XSS / Access Control
Posted by deepcore under exploit (No Respond)
WordPress Contact Form Check Tester plugin version 1.0.2 suffers from broken access control and cross site scripting vulnerabilities.
Mozilla Firefox 67 Array.pop JIT Type Confusion
Posted by deepcore under exploit (No Respond)
Mozilla Firefox version 67 Array.pop JIT type confusion exploit with sandbox escape.