0day – Page 276 – :: Deepquest ::

[SECURITY]

>> [webapps] Part-DB 0.4 – Authentication Bypass

USER: deepcore // 2019-10-28 // 0 CMT

Part-DB 0.4 – Authentication Bypass

[SECURITY]

>> [webapps] waldronmatt FullCalendar-BS4-PHP-MySQL-JSON 1.21 – 'start' SQL Injection

USER: deepcore // 2019-10-28 // 0 CMT

waldronmatt FullCalendar-BS4-PHP-MySQL-JSON 1.21 – ‘start’ SQL Injection

[SECURITY]

>> [webapps] waldronmatt FullCalendar-BS4-PHP-MySQL-JSON 1.21 – 'description' Cross-Site Scripting

USER: deepcore // 2019-10-28 // 0 CMT

waldronmatt FullCalendar-BS4-PHP-MySQL-JSON 1.21 – ‘description’ Cross-Site Scripting

[SECURITY]

>> [local] JumpStart 0.6.0.0 – 'jswpbapi' Unquoted Service Path

USER: deepcore // 2019-10-28 // 0 CMT

JumpStart 0.6.0.0 – ‘jswpbapi’ Unquoted Service Path

[SECURITY]

>> [webapps] delpino73 Blue-Smiley-Organizer 1.32 – 'datetime' SQL Injection

USER: deepcore // 2019-10-28 // 0 CMT

delpino73 Blue-Smiley-Organizer 1.32 – ‘datetime’ SQL Injection

[SECURITY]

>> [local] ChaosPro 2.0 – Buffer Overflow (SEH)

USER: deepcore // 2019-10-28 // 0 CMT

ChaosPro 2.0 – Buffer Overflow (SEH)

[SECURITY]

>> [dos] WebKit – Universal XSS in HTMLFrameElementBase::isURLAllowed

USER: deepcore // 2019-10-28 // 0 CMT

WebKit – Universal XSS in HTMLFrameElementBase::isURLAllowed

[SECURITY]

>> [webapps] ClonOs WEB UI 19.09 – Improper Access Control

USER: deepcore // 2019-10-25 // 0 CMT

ClonOs WEB UI 19.09 – Improper Access Control

[SECURITY]

>> [local] Linux Polkit – pkexec helper PTRACE_TRACEME local root (Metasploit)

USER: deepcore // 2019-10-24 // 0 CMT

Linux Polkit – pkexec helper PTRACE_TRACEME local root (Metasploit)

[SECURITY]

>> [webapps] WordPress Sliced Invoices 3.8.2 – 'post' SQL Injection

USER: deepcore // 2019-10-24 // 0 CMT

WordPress Sliced Invoices 3.8.2 – ‘post’ SQL Injection

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this: