exploit – Page 1538 – :: Deepquest ::

>> GitLab Impersonate Privilege Escalation

USER: deepcore // 2016-08-17 // 0 CMT

GitLab suffers from a privilege escalation vulnerability via the impersonate feature. Versions 8.2.0 through 8.2.4, 8.3.0 through 8.3.8, 8.4.0 through 8.4.9, 8.5.0 through 8.5.11, 8.6.0 through 8.6.7, and 8.7.0 are…

>> ISPconfig v3.0.5.4 p6 – UI Exception & XSS Vulnerability

USER: deepcore // 2016-08-16 // 0 CMT

No abstract description available in the upcomings!

>> nopCommerce 3.70 Cross Site Scripting

USER: deepcore // 2016-08-16 // 0 CMT

nopCommerce version 3.70 suffers from a cross site scripting vulnerability.

>> OpenCart 2.0.3.1 Cross Site Scripting

USER: deepcore // 2016-08-16 // 0 CMT

OpenCart version 2.0.3.1 suffers from a cross site scripting vulnerability.

>> Telegram Bot API Cross Site Request Forgery / Denial Of Service

USER: deepcore // 2016-08-16 // 0 CMT

A cross site request forgery vulnerability in the Telegram Bot API can allow for denial of service attacks.

>> PayPal 2FA Bypass

USER: deepcore // 2016-08-16 // 0 CMT

PayPal suffered from a two-factor authentication bypass vulnerability.

>> Joomla AceFTP Arbitrary File Download

USER: deepcore // 2016-08-16 // 0 CMT

Joomla AceFTP component appears to suffer from an arbitrary file download vulnerability.

>> WordPress Google Maps 2.1.2 Cross Site Scripting

USER: deepcore // 2016-08-16 // 0 CMT

WordPress Google Maps plugin version 2.1.2 suffers from a cross site scripting vulnerability.

>> WordPress Photo Gallery 1.8.5 Cross Site Request Forgery

USER: deepcore // 2016-08-16 // 0 CMT

WordPress Photo Gallery by Supsystic plugin version 1.8.5 suffers from multiple cross site request forgery vulnerabilities.

>> WordPress Email Users 4.8.3 Cross Site Request Forgery

USER: deepcore // 2016-08-16 // 0 CMT

WordPress Email Users plugin version 4.8.3 suffers from a cross site request forgery vulnerability.