Subscribe via feed.

[webapps] Laundry Booking Management System 1.0 – Remote Code Execution (RCE)

Posted by deepcore under Security (No Respond)

Laundry Booking Management System 1.0 – Remote Code Execution (RCE)

Tags: ,

[webapps] orangescrum 1.8.0 – Privilege escalation (Authenticated)

Posted by deepcore under Security (No Respond)

orangescrum 1.8.0 – Privilege escalation (Authenticated)

Tags: ,

[webapps] orangescrum 1.8.0 – 'Multiple' Cross-Site Scripting (XSS) (Authenticated)

Posted by deepcore under Security (No Respond)

orangescrum 1.8.0 – ‘Multiple’ Cross-Site Scripting (XSS) (Authenticated)

Tags: ,

[webapps] orangescrum 1.8.0 – 'Multiple' SQL Injection (Authenticated)

Posted by deepcore under Security (No Respond)

orangescrum 1.8.0 – ‘Multiple’ SQL Injection (Authenticated)

Tags: ,

[webapps] opencart 3.0.3.8 – Sessjion Injection

Posted by deepcore under Security (No Respond)

opencart 3.0.3.8 – Sessjion Injection

Tags: ,

[webapps] Bagisto 1.3.3 – Client-Side Template Injection

Posted by deepcore under Security (No Respond)

Bagisto 1.3.3 – Client-Side Template Injection

Tags: ,

[local] HTTPDebuggerPro 9.11 – Unquoted Service Path

Posted by deepcore under Security (No Respond)

HTTPDebuggerPro 9.11 – Unquoted Service Path

Tags: ,

[webapps] CMSimple 5.4 – Local file inclusion (LFI) to Remote code execution (RCE) (Authenticated)

Posted by deepcore under Security (No Respond)

CMSimple 5.4 – Local file inclusion (LFI) to Remote code execution (RCE) (Authenticated)

Tags: ,

[remote] GNU gdbserver 9.2 – Remote Command Execution (RCE)

Posted by deepcore under Security (No Respond)

GNU gdbserver 9.2 – Remote Command Execution (RCE)

Tags: ,

[webapps] WordPress Plugin WP Guppy 1.1 – WP-JSON API Sensitive Information Disclosure

Posted by deepcore under Security (No Respond)

WordPress Plugin WP Guppy 1.1 – WP-JSON API Sensitive Information Disclosure

Tags: ,