Microsoft Patches Zero Day Under Active Attack
Posted by deepcore under exploit (No Respond)
Posts under exploit
Sielco PolyEco Digital FM Transmitter 2.0.6 Default Credentials
Posted by deepcore under exploit (No Respond)
Sielco PolyEco Digital FM Transmitter version 2.0.6 uses a weak set of default administrative credentials that can be easily guessed in remote password attacks to gain full control of the system.
Bludit 4.0.0-rc-2 Privilege Escalation
Posted by deepcore under exploit (No Respond)
Bludit version 4.0.0-rc-2 suffers from an account takeover vulnerability due to an API key that can be abused to change the administrative password.
Bludit 4.0.0-rc-2 Privilege Escalation
Posted by deepcore under exploit (No Respond)
Bludit version 4.0.0-rc-2 suffers from an account takeover vulnerability due to an API key that can be abused to change the administrative password.
Icinga Web 2.10 Arbitrary File Disclosure
Posted by deepcore under exploit (No Respond)
Icinga Web version 2.10 suffers from an arbitrary file disclosure vulnerability.
Altenergy Power Control Software C1.2.5 Command Injection
Posted by deepcore under exploit (No Respond)
Altenergy Power Control Software version C1.2.5 suffers from a command injection vulnerability.
Restaurant Management System 1.0 SQL Injection
Posted by deepcore under exploit (No Respond)
Restaurant Management System version 1.0 suffers from a remote SQL injection vulnerability.
ENTAB ERP 1.0 Information Disclosure
Posted by deepcore under exploit (No Respond)
ENTAB ERP version 1.0 suffers from a username information leak due to a lack of rate limiting.
Online Appointment System 1.0 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
Online Appointment System version 1.0 suffers from a cross site scripting vulnerability.
ActFax 10.10 Unquoted Service Path
Posted by deepcore under exploit (No Respond)
ActFax version 10.10 suffers from an unquoted service path vulnerability.