News Website Script 2.0.4 – ‘search’ SQL Injection
>> TAG: #0day
News Website Script 2.0.4 – ‘search’ SQL Injection
TypeSetter CMS 5.1 – Cross-Site Request Forgery
TypeSetter CMS 5.1 – ‘Host’ Header Injection
CloudMe Sync < 1.11.0 – Buffer Overflow
LogicalDOC Enterprise 7.7.4 – User Enumeration
LogicalDOC Enterprise 7.7.4 – Directory Traversal
LogicalDOC Enterprise 7.7.4 – Root Remote Code Execution
glibc – ‘$ORIGIN’ Expansion Privilege Escalation (Metasploit)
Readymade Video Sharing Script 3.2 – ‘search’ SQL Injection
Paypal Clone Script 1.0.9 – ‘id’ / ‘acctype’ SQL Injection