Subscribe via feed.

[webapps] COMMAX CVD-Axx DVR 5.1.4 – Weak Default Credentials Stream Disclosure

Posted by deepcore under Security (No Respond)

COMMAX CVD-Axx DVR 5.1.4 – Weak Default Credentials Stream Disclosure

Tags: ,

[webapps] 4images 1.8 – 'limitnumber' SQL Injection (Authenticated)

Posted by deepcore under Security (No Respond)

4images 1.8 – ‘limitnumber’ SQL Injection (Authenticated)

Tags: ,

[webapps] easy-mock 1.6.0 – Remote Code Execution (RCE) (Authenticated)

Posted by deepcore under Security (No Respond)

easy-mock 1.6.0 – Remote Code Execution (RCE) (Authenticated)

Tags: ,

[webapps] Simple Image Gallery System 1.0 – 'id' SQL Injection

Posted by deepcore under Security (No Respond)

Simple Image Gallery System 1.0 – ‘id’ SQL Injection

Tags: ,

[webapps] COVID19 Testing Management System 1.0 – 'searchdata' SQL Injection

Posted by deepcore under Security (No Respond)

COVID19 Testing Management System 1.0 – ‘searchdata’ SQL Injection

Tags: ,

[webapps] Altova MobileTogether Server 7.3 – XML External Entity Injection (XXE)

Posted by deepcore under Security (No Respond)

Altova MobileTogether Server 7.3 – XML External Entity Injection (XXE)

Tags: ,

[webapps] RATES SYSTEM 1.0 – 'Multiple' SQL Injections

Posted by deepcore under Security (No Respond)

RATES SYSTEM 1.0 – ‘Multiple’ SQL Injections

Tags: ,

[webapps] IPCop 2.1.9 – Remote Code Execution (RCE) (Authenticated)

Posted by deepcore under Security (No Respond)

IPCop 2.1.9 – Remote Code Execution (RCE) (Authenticated)

Tags: ,

[local] Amica Prodigy 1.7 – Privilege Escalation

Posted by deepcore under Security (No Respond)

Amica Prodigy 1.7 – Privilege Escalation

Tags: ,

[webapps] Cockpit CMS 0.11.1 – 'Username Enumeration & Password Reset' NoSQL Injection

Posted by deepcore under Security (No Respond)

Cockpit CMS 0.11.1 – ‘Username Enumeration & Password Reset’ NoSQL Injection

Tags: ,