exploit – Page 1360 – :: Deepquest ::

>> Kaspersky – File Manager Cross Site Scripting Vulnerability

USER: deepcore // 2016-10-13 // 0 CMT

…

>> Android Binder Information Disclosure

USER: deepcore // 2016-10-13 // 0 CMT

The interaction between the kernel /dev/binder and the usermode Parcel.cpp mean that when a binder object is passed as BINDER_TYPE_BINDER or BINDER_TYPE_WEAK_BINDER, a pointer to that object (in the server…

>> Plone CMS 4.3.11 / 5.0.6 XSS / Traversal / Open Redirection

USER: deepcore // 2016-10-13 // 0 CMT

Plone CMS versions 4.3.11 and below and versions 5.0.6 and below suffer from cross site scripting, open redirection, and path traversal vulnerabilities.

>> Limny 3.2.2 Local File Inclusion

USER: deepcore // 2016-10-13 // 0 CMT

Limny version 3.2.2 suffers from a local file inclusion vulnerability.

>> Limny 3.0.2 Local File Inclusion

USER: deepcore // 2016-10-13 // 0 CMT

Limny version 3.0.2 suffers from a local file inclusion vulnerability.

>> iWisoft Video Converter 1.2 DLL Hijacking

USER: deepcore // 2016-10-13 // 0 CMT

iWisoft Video Converter version 1.2 suffers from a dll hijacking vulnerability.

>> Limny 2.2 Expression Language Injection

USER: deepcore // 2016-10-13 // 0 CMT

Limny version 2.2 suffers from an expression language injection vulnerability.

>> OpenSSL x509 Parsing Double-Free / Invalid-Free

USER: deepcore // 2016-10-13 // 0 CMT

Double-free and invalid-free vulnerabilities in x509 parsing were found in the latest OpenSSL (1.1.0b).

>> ApPHP MicroCMS 3.9.5 Cross Site Request Forgery

USER: deepcore // 2016-10-13 // 0 CMT

ApPHP MicroCMS version 3.9.5 suffers from a cross site request forgery vulnerability.

>> OpenCimetiere 3.0.0-a5 Blind SQL Injection

USER: deepcore // 2016-10-13 // 0 CMT

OpenCimetiere version 3.0.0-a5 suffers from a remote blind SQL injection vulnerability.