0day – Page 196 – :: Deepquest ::

[SECURITY]

>> [webapps] CMSUno 1.6 – Cross-Site Request Forgery (Change Admin Password)

USER: deepcore // 2020-07-17 // 0 CMT

CMSUno 1.6 – Cross-Site Request Forgery (Change Admin Password)

[SECURITY]

>> [webapps] RiteCMS 2.2.1 – Remote Code Execution

USER: deepcore // 2020-07-16 // 0 CMT

RiteCMS 2.2.1 – Remote Code Execution

[SECURITY]

>> [webapps] Wing FTP Server 6.3.8 – Remote Code Execution (Authenticated)

USER: deepcore // 2020-07-16 // 0 CMT

Wing FTP Server 6.3.8 – Remote Code Execution (Authenticated)

[SECURITY]

>> [webapps] SuperMicro IPMI WebInterface 03.40 – Cross-Site Request Forgery (Add Admin)

USER: deepcore // 2020-07-15 // 0 CMT

SuperMicro IPMI WebInterface 03.40 – Cross-Site Request Forgery (Add Admin)

[SECURITY]

>> [webapps] Zyxel Armor X1 WAP6806 – Directory Traversal

USER: deepcore // 2020-07-15 // 0 CMT

Zyxel Armor X1 WAP6806 – Directory Traversal

[SECURITY]

>> [webapps] BSA Radar 1.6.7234.24750 – Local File Inclusion

USER: deepcore // 2020-07-14 // 0 CMT

BSA Radar 1.6.7234.24750 – Local File Inclusion

[SECURITY]

>> [webapps] Trend Micro Web Security Virtual Appliance 6.5 SP2 Patch 4 Build 1901 – Remote Code Execution (Metasploit)

USER: deepcore // 2020-07-14 // 0 CMT

Trend Micro Web Security Virtual Appliance 6.5 SP2 Patch 4 Build 1901 – Remote Code Execution (Metasploit)

[SECURITY]

>> [webapps] Park Ticketing Management System 1.0 – Authentication Bypass

USER: deepcore // 2020-07-13 // 0 CMT

Park Ticketing Management System 1.0 – Authentication Bypass

[SECURITY]

>> [webapps] Park Ticketing Management System 1.0 – 'viewid' SQL Injection

USER: deepcore // 2020-07-13 // 0 CMT

Park Ticketing Management System 1.0 – ‘viewid’ SQL Injection

[SECURITY]

>> [webapps] HelloWeb 2.0 – Arbitrary File Download

USER: deepcore // 2020-07-10 // 0 CMT

HelloWeb 2.0 – Arbitrary File Download

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this: