Security – Page 157 –

[SECURITY]

>> [webapps] OTRS 6.0.1 – Remote Command Execution (2)

USER: deepcore // 2021-04-22 // 0 CMT

OTRS 6.0.1 – Remote Command Execution (2)

[SECURITY]

>> [webapps] CMS Made Simple 2.2.15 – 'title' Cross-Site Scripting (XSS)

USER: deepcore // 2021-04-22 // 0 CMT

CMS Made Simple 2.2.15 – ‘title’ Cross-Site Scripting (XSS)

[SECURITY]

>> [webapps] RemoteClinic 2 – 'Multiple' Cross-Site Scripting (XSS)

USER: deepcore // 2021-04-21 // 0 CMT

RemoteClinic 2 – ‘Multiple’ Cross-Site Scripting (XSS)

[SECURITY]

>> [webapps] Fast PHP Chat 1.3 – 'my_item_search' SQL Injection

USER: deepcore // 2021-04-21 // 0 CMT

Fast PHP Chat 1.3 – ‘my_item_search’ SQL Injection

[SECURITY]

>> [webapps] Multilaser Router RE018 AC1200 – Cross-Site Request Forgery (Enable Remote Access)

USER: deepcore // 2021-04-21 // 0 CMT

Multilaser Router RE018 AC1200 – Cross-Site Request Forgery (Enable Remote Access)

[SECURITY]

>> [webapps] WordPress Plugin RSS for Yandex Turbo 1.29 – Stored Cross-Site Scripting (XSS)

USER: deepcore // 2021-04-21 // 0 CMT

WordPress Plugin RSS for Yandex Turbo 1.29 – Stored Cross-Site Scripting (XSS)

[SECURITY]

>> [webapps] BlackCat CMS 1.3.6 – 'Multiple' Stored Cross-Site Scripting (XSS)

USER: deepcore // 2021-04-21 // 0 CMT

BlackCat CMS 1.3.6 – ‘Multiple’ Stored Cross-Site Scripting (XSS)

[SECURITY]

>> [webapps] Discourse 2.7.0 – Rate Limit Bypass leads to 2FA Bypass

USER: deepcore // 2021-04-21 // 0 CMT

Discourse 2.7.0 – Rate Limit Bypass leads to 2FA Bypass

[SECURITY]

>> [remote] Tenda D151 & D301 – Configuration Download (Unauthenticated)

USER: deepcore // 2021-04-21 // 0 CMT

Tenda D151 & D301 – Configuration Download (Unauthenticated)

[SECURITY]

>> [webapps] GetSimple CMS My SMTP Contact Plugin 1.1.1 – CSRF to RCE

USER: deepcore // 2021-04-16 // 0 CMT

GetSimple CMS My SMTP Contact Plugin 1.1.1 – CSRF to RCE

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this: