exploit – Page 595 – :: Deepquest ::

>> D-Link DGS-1250 Header Injection

USER: deepcore // 2020-02-22 // 0 CMT

D-Link DGS-1250 suffers from a header injection vulnerability that can be leveraged through cross site scripting.

>> Online Birth Certificate System 1.0 Cross Site Scripting

USER: deepcore // 2020-02-22 // 0 CMT

Online Birth Certificate System version 1.0 suffers from a persistent cross site scripting vulnerability.

>> Open-Xchange App Suite / Documents Server-Side Request Forgery

USER: deepcore // 2020-02-22 // 0 CMT

Open-Xchange App Suite and Documents versions 7.10.2 and below suffer from multiple server-side request forgery vulnerabilities.

>> OpenNetAdmin Ping Command Injection

USER: deepcore // 2020-02-22 // 0 CMT

This Metasploit module exploits a command injection in OpenNetAdmin between versions 8.5.14 and 18.1.1.

>> WordPress Default-Featured-Image 1.6.1 Cross Site Scripting

USER: deepcore // 2020-02-21 // 0 CMT

WordPress Default-Featured-Image plugin version 1.6.1 suffers from a cross site scripting vulnerability.

>> WordPress Events-Manager 5.9.7.3 Cross Site Scripting

USER: deepcore // 2020-02-21 // 0 CMT

WordPress Events-Manager plugin version 5.9.7.3 suffers from a cross site scripting vulnerability.

>> WordPress Forminator 1.11.2 Remote File Upload

USER: deepcore // 2020-02-21 // 0 CMT

WordPress Forminator plugin version 1.11.2 suffers from a remote file upload vulnerability.

>> WordPress Forminator 1.11.2 Cross Site Scripting

USER: deepcore // 2020-02-21 // 0 CMT

WordPress Forminator plugin version 1.11.2 suffers from a cross site scripting vulnerability.

>> WordPress Jetpack 8.2 Cross Site Scripting

USER: deepcore // 2020-02-21 // 0 CMT

WordPress Jetpack plugin version 8.2 suffers from a cross site scripting vulnerability.

>> Easy2Pilot 7 Cross Site Request Forgery

USER: deepcore // 2020-02-21 // 0 CMT

Easy2Pilot version 7 suffers from a cross site request forgery vulnerability.