[webapps] Online Learning System 2.0 – Remote Code Execution (RCE)
Posted by deepcore under Security (No Respond)
[webapps] WordPress Plugin WPSchoolPress 2.1.16 – 'Multiple' Cross Site Scripting (XSS)
Posted by deepcore under Security (No Respond)
WordPress Plugin WPSchoolPress 2.1.16 – ‘Multiple’ Cross Site Scripting (XSS)
Tags: 0day, remote exploit[webapps] WordPress Plugin Contact Form to Email 1.3.24 – Stored Cross Site Scripting (XSS) (Authenticated)
Posted by deepcore under Security (No Respond)
WordPress Plugin Contact Form to Email 1.3.24 – Stored Cross Site Scripting (XSS) (Authenticated)
Tags: 0day, remote exploit[webapps] KONGA 0.14.9 – Privilege Escalation
Posted by deepcore under Security (No Respond)
[webapps] Simple Subscription Website 1.0 – SQLi Authentication Bypass
Posted by deepcore under Security (No Respond)
[webapps] Fuel CMS 1.4.13 – 'col' Blind SQL Injection (Authenticated)
Posted by deepcore under Security (No Respond)
[webapps] PHP Laravel 8.70.1 – Cross Site Scripting (XSS) to Cross Site Request Forgery (CSRF)
Posted by deepcore under Security (No Respond)
PHP Laravel 8.70.1 – Cross Site Scripting (XSS) to Cross Site Request Forgery (CSRF)
Tags: 0day, remote exploit[webapps] WordPress Plugin WP Symposium Pro 2021.10 – 'wps_admin_forum_add_name' Stored Cross-Site Scripting (XSS)
Posted by deepcore under Security (No Respond)
WordPress Plugin WP Symposium Pro 2021.10 – ‘wps_admin_forum_add_name’ Stored Cross-Site Scripting (XSS)
Tags: 0day, remote exploit[webapps] WordPress Plugin AccessPress Social Icons 1.8.2 – 'icon title' Stored Cross-Site Scripting (XSS)
Posted by deepcore under Security (No Respond)
WordPress Plugin AccessPress Social Icons 1.8.2 – ‘icon title’ Stored Cross-Site Scripting (XSS)
Tags: 0day, remote exploit[dos] Xlight FTP 3.9.3.1 – Buffer Overflow (PoC)
Posted by deepcore under Security (No Respond)