Planet eStream Code Execution / SQL Injection / XSS / Broken Control

Posted by deepcore on December 10, 2022 – 5:51 pm

Last Updated on December 10, 2022 by deepcore

Planet eStream versions prior to 6.72.10.07 suffer from shell upload, account takeover, broken access control, SQL injection, both persistent and reflective cross site scripting, path traversal, and information disclosure vulnerabilities.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« snap-confine must_mkdir_and_open_with_perms() Race Condition Delta Electronics DVW-W02W2-E2 2.42 Command Injection »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Planet eStream Code Execution / SQL Injection / XSS / Broken Control

Post a reply

Tabs Switcher

Archives

Meta

BLOGROLL