ICEHRM 31.0.0.0S Cross Site Request Forgery
Posted by deepcore under exploit (No Respond)
ICEHRM version 31.0.0.0S suffers from a cross site request forgery vulnerability.
Archive for March, 2022
ImpressCMS 1.4.2 Path Traversal
Posted by deepcore under exploit (No Respond)
ImpressCMS versions 1.4.2 and below suffer from a path traversal vulnerability that can allow for arbitrary file deletion.
ImpressCMS 1.4.2 Incorrect Access Control
Posted by deepcore under exploit (No Respond)
ImpressCMS versions 1.4.2 and below suffer from an incorrect access control vulnerability.
ImpressCMS 1.4.2 SQL Injection
Posted by deepcore under exploit (No Respond)
ImpressCMS versions 1.4.3 and below suffer from a remote SQL injection vulnerability.
[webapps] WordPress Plugin amministrazione-aperta 3.7.3 – Local File Read – Unauthenticated
Posted by deepcore under Security (No Respond)
WordPress Plugin amministrazione-aperta 3.7.3 – Local File Read – Unauthenticated
Tags: 0day, remote exploit[local] ProtonVPN 1.26.0 – Unquoted Service Path
Posted by deepcore under Security (No Respond)
ImpressCMS 1.4.2 SQL Injection
Posted by deepcore under exploit (No Respond)
ImpressCMS versions 1.4.3 and below suffer from a remote SQL injection vulnerability.
SAP Knowledge Warehouse 7.50 / 7.40 / 7.31 / 7.30 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
SAP Knowledge Warehouse versions 7.30, 7.31, 7.40, and 7.50 suffer from a cross site scripting vulnerability.
WordPress iQ Block Country 1.2.13 Arbitrary File Deletion
Posted by deepcore under exploit (No Respond)
WordPress iQ Block Country plugin version 1.2.13 suffers from an arbitrary file deletion vulnerability.
Inventory Management System 1.0 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Inventory Management System version 1.0 suffers from a persistent cross site scripting vulnerability.