Subscribe via feed.
Posts under exploit

WordPress Weaver Xtreme 5.0.7 / Weaver Show Posts 1.6 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

WordPress Weaver Xtreme theme versions 5.0.7 and below and Weaver Show Posts plugin versions 1.6 and below suffer from a persistent cross site scripting vulnerability.

VMware Workspace ONE Remote Code Execution

Posted by deepcore under exploit (No Respond)

This Metasploit module combines two vulnerabilities in order achieve remote code execution in the context of the horizon user. The first vulnerability, CVE-2022-22956, is an authentication bypass in OAuth2TokenResourceController ACS which allows a remote, unauthenticated attacker to bypass the authentication mechanism and execute any operation. The second vulnerability, CVE-2022-22957, is a JDBC injection remote code […]

SPIP Remote Command Execution

Posted by deepcore under exploit (No Respond)

This Metasploit module exploits a PHP code injection in SPIP. The vulnerability exists in the oubli parameter and allows an unauthenticated user to execute arbitrary commands with web user privileges. Branches 3.2, 4.0, 4.1 and 4.2 are concerned. Vulnerable versions are below 3.2.18, below 4.0.10, below 4.1.18 and below 4.2.1.

SecurePoint UTM 12.x Session ID Leak

Posted by deepcore under exploit (No Respond)

SecurePoint UTM versions 12.x suffers from a session identifier leak vulnerability via the spcgi.cgi endpoint.

SecurePoint UTM 12.x Memory Leak

Posted by deepcore under exploit (No Respond)

SecurePoint UTM versions 12.x suffers from a memory leak vulnerability via the spcgi.cgi endpoint.

SecurePoint UTM 12.x Memory Leak

Posted by deepcore under exploit (No Respond)

SecurePoint UTM versions 12.x suffers from a memory leak vulnerability via the spcgi.cgi endpoint.

Bang Resto 1.0 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

Bang Resto version 1.0 suffers from a cross site scripting vulnerability.

GDidees CMS 3.9.1 Local File Disclosure / Directory Traversal

Posted by deepcore under exploit (No Respond)

GDidees CMS version 3.9.1 suffers from file disclosure and directory traversal vulnerabilities.

Bang Resto 1.0 SQL Injection

Posted by deepcore under exploit (No Respond)

Bang Resto version 1.0 suffers from multiple SQL injection vulnerabilities. Original discovery of SQL injection in this version is attributed to nu11secur1ty in December of 2022.

AspEmail 5.6.0.2 Weak Permissions / Local Privilege Escalation

Posted by deepcore under exploit (No Respond)

AspEmail version 5.6.0.2 suffers from weak permission vulnerability that allows for local privilege escalation.