Subscribe via feed.

[webapps] OpenEMR 5.0.1.7 – 'fileName' Path Traversal (Authenticated)

Posted by deepcore under Security (No Respond)

OpenEMR 5.0.1.7 – ‘fileName’ Path Traversal (Authenticated)

Tags: ,

[webapps] Node.JS – 'node-serialize' Remote Code Execution (3)

Posted by deepcore under Security (No Respond)

Node.JS – ‘node-serialize’ Remote Code Execution (3)

Tags: ,

[remote] Dlink DSL2750U – 'Reboot' Command Injection

Posted by deepcore under Security (No Respond)

Dlink DSL2750U – ‘Reboot’ Command Injection

Tags: ,

[webapps] ICE Hrm 29.0.0.OS – 'xml upload' Stored Cross-Site Scripting (XSS)

Posted by deepcore under Security (No Respond)

ICE Hrm 29.0.0.OS – ‘xml upload’ Stored Cross-Site Scripting (XSS)

Tags: ,

[webapps] ICE Hrm 29.0.0.OS – 'Account Takeover' Cross-Site Request Forgery (CSRF)

Posted by deepcore under Security (No Respond)

ICE Hrm 29.0.0.OS – ‘Account Takeover’ Cross-Site Request Forgery (CSRF)

Tags: ,

[webapps] ICE Hrm 29.0.0.OS – 'Account Takeover' Cross-Site Scripting and Session Fixation

Posted by deepcore under Security (No Respond)

ICE Hrm 29.0.0.OS – ‘Account Takeover’ Cross-Site Scripting and Session Fixation

Tags: ,

[webapps] Online Shopping Portal 3.1 – Remote Code Execution (Unauthenticated)

Posted by deepcore under Security (No Respond)

Online Shopping Portal 3.1 – Remote Code Execution (Unauthenticated)

Tags: ,

[webapps] Zoho ManageEngine ServiceDesk Plus MSP 9.4 – User Enumeration

Posted by deepcore under Security (No Respond)

Zoho ManageEngine ServiceDesk Plus MSP 9.4 – User Enumeration

Tags: ,

[local] VX Search 13.5.28 – 'Multiple' Unquoted Service Path

Posted by deepcore under Security (No Respond)

VX Search 13.5.28 – ‘Multiple’ Unquoted Service Path

Tags: ,

[local] Dup Scout 13.5.28 – 'Multiple' Unquoted Service Path

Posted by deepcore under Security (No Respond)

Dup Scout 13.5.28 – ‘Multiple’ Unquoted Service Path

Tags: ,