exploit – Page 1265 –

[EXPLOIT]

>> NetGain Enterprise Manager 7.2.562 Command Execution

USER: deepcore // 2017-03-04 // 0 CMT

NetGain Enterprise Manager versions 7.2.562 build 853 and below suffer from a ping command injection vulnerability.

[EXPLOIT]

>> Joomla Abstract 2.1 SQL Injection

USER: deepcore // 2017-03-04 // 0 CMT

Joomla Abstract component version 2.1 suffers from a remote SQL injection vulnerability.

[EXPLOIT]

>> Joomla StreetGuessr Game 1.0 SQL Injection

USER: deepcore // 2017-03-04 // 0 CMT

Joomla StreetGuessr Game component version 1.0 suffers from a remote SQL injection vulnerability.

[EXPLOIT]

>> Joomla Guesser 1.0.4 SQL Injection

USER: deepcore // 2017-03-04 // 0 CMT

Joomla Guesser component version 1.0.4 suffers from a remote SQL injection vulnerability.

[EXPLOIT]

>> pfSense 2.3.2 Cross Site Request Forgery / Cross Site Scripting

USER: deepcore // 2017-03-04 // 0 CMT

pfSense version 2.3.2 suffers from cross site request forgery and cross site scripting vulnerabilities that can assist in gaining a reverse-shell remotely as root.

[EXPLOIT]

>> Joomla Recipe Manager 2.2 SQL Injection

USER: deepcore // 2017-03-04 // 0 CMT

Joomla Recipe Manager component version 2.2 suffers from a remote SQL injection vulnerability.

[EXPLOIT]

>> Ektron 8.5 / 8.7 / 9.0 XSLT Transform Remote Code Execution

USER: deepcore // 2017-03-04 // 0 CMT

Ektron versions 8.5, 8.7 equal to and below sp1, and 9.0 before sp1 have vulnerabilities in various operations within the ServerControlWS.asmxweb services. These vulnerabilities allow for remote code execution without…