Subscribe via feed.

[webapps] TripSpark VEO Transportation – Blind SQL Injection

Posted by deepcore under Security (No Respond)

TripSpark VEO Transportation – Blind SQL Injection

Tags: ,

[webapps] Customer Relationship Management System (CRM) 1.0 – Sql Injection Authentication Bypass

Posted by deepcore under Security (No Respond)

Customer Relationship Management System (CRM) 1.0 – Sql Injection Authentication Bypass

Tags: ,

[webapps] PHP 7.3.15-3 – 'PHP_SESSION_UPLOAD_PROGRESS' Session Data Injection

Posted by deepcore under Security (No Respond)

PHP 7.3.15-3 – ‘PHP_SESSION_UPLOAD_PROGRESS’ Session Data Injection

Tags: ,

[webapps] Elasticsearch ECE 7.13.3 – Anonymous Database Dump

Posted by deepcore under Security (No Respond)

Elasticsearch ECE 7.13.3 – Anonymous Database Dump

Tags: ,

[dos] Leawo Prof. Media 11.0.0.1 – Denial of Service (DoS) (PoC)

Posted by deepcore under Security (No Respond)

Leawo Prof. Media 11.0.0.1 – Denial of Service (DoS) (PoC)

Tags: ,

[webapps] NoteBurner 2.35 – Denial Of Service (DoS) (PoC)

Posted by deepcore under Security (No Respond)

NoteBurner 2.35 – Denial Of Service (DoS) (PoC)

Tags: ,

[webapps] XOS Shop 1.0.9 – 'Multiple' Arbitrary File Deletion (Authenticated)

Posted by deepcore under Security (No Respond)

XOS Shop 1.0.9 – ‘Multiple’ Arbitrary File Deletion (Authenticated)

Tags: ,

[webapps] WordPress Plugin Simple Post 1.1 – 'Text field' Stored Cross-Site Scripting (XSS)

Posted by deepcore under Security (No Respond)

WordPress Plugin Simple Post 1.1 – ‘Text field’ Stored Cross-Site Scripting (XSS)

Tags: ,

[webapps] ElasticSearch 7.13.3 – Memory disclosure

Posted by deepcore under Security (No Respond)

ElasticSearch 7.13.3 – Memory disclosure

Tags: ,

[remote] KevinLAB BEMS 1.0 – Undocumented Backdoor Account

Posted by deepcore under Security (No Respond)

KevinLAB BEMS 1.0 – Undocumented Backdoor Account

Tags: ,