Clik here to view.
WooCommerce CSV-Importer-Plugin 3.3.6 - Remote Code Execution
EDB-ID: 44433Author: Lenon LeitePublished: 2018-04-09CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 08/04/2018 # Exploit Author: Lenon Leite # Vendor Homepage:...
View ArticleClik here to view.
iScripts SonicBB 1.0 - Reflected Cross-Site Scripting
EDB-ID: 44434Author: ManhNhoPublished: 2018-04-09CVE: CVE-2018-9235 Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 02/04/2018 # Exploit Author: ManhNho # Vendor Homepage:...
View ArticleClik here to view.
WordPress Plugin Google Drive 2.2 - Remote Code Execution
EDB-ID: 44435Author: Lenon LeitePublished: 2018-04-09CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 08/04/2018 # Exploit Author: Lenon Leite # Vendor Homepage:...
View ArticleClik here to view.
iScripts Easycreate 3.2.1 - Stored Cross-Site Scripting
EDB-ID: 44436Author: ManhNhoPublished: 2018-04-10CVE: CVE-2018-9236... Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 02/04/2018 # Exploit Author: ManhNho # Vendor Homepage:...
View ArticleClik here to view.
Wordpress Plugin Activity Log 2.4.0 - Stored Cross Site Scripting
EDB-ID: 44437Author: Stefan BroederPublished: 2018-04-10CVE: CVE-2018-8729 Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 25-02-2018 # Exploit Author : Stefan Broeder # Vendor Homepage:...
View ArticleClik here to view.
WUZHI CMS 4.1.0 - ‘Add Admin Account’ Cross-Site Request Forgery
EDB-ID: 44439Author: taogePublished: 2018-04-10CVE: CVE-2018-9926 Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 2018-04-10 # Exploit Author: taoge # Vendor Homepage:...
View ArticleClik here to view.
DVD X Player Standard 5.5.3.9 - Buffer Overflow
EDB-ID: 44438Author: Prasenjit Kanti PaulPublished: 2018-04-10CVE: CVE-2018-9128 Type: LocalPlatform: Windows_x86Vulnerable App: N/A # Exploit Title: Buffer Overflow on DVD X Player Standard 5.5.3.9 #...
View ArticleClik here to view.
Dell EMC Avamar and Integrated Data Protection Appliance Installation...
EDB-ID: 44441Author: SlidingWindowPublished: 2018-04-10CVE: CVE-2018-1217 Type: WebappsPlatform: LinuxVulnerable App: N/A # Date: [24/11/2017] # Exploit Author: [SlidingWindow] # Vendor Homepage:...
View ArticleClik here to view.
WUZHI CMS 4.1.0 - ‘Add User Account’ Cross-Site Request Forgery
EDB-ID: 44440Author: taogePublished: 2018-04-10CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 2018-04-10 # Exploit Author: taoge # Vendor Homepage: https://github.com/wuzhicms/wuzhicms...
View ArticleClik here to view.
WordPress File Upload Plugin 4.3.2 - Stored Cross Site Scripting
EDB-ID: 44443Author: ManhNhoPublished: 2018-04-10CVE: CVE-2018-9172 Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 31/03/2018 # Exploit Author: ManhNho # Vendor Homepage:...
View ArticleClik here to view.
WordPress Plugin WordPress File Upload 4.3.3 - Stored XSS
EDB-ID: 44444Author: ManhNhoPublished: 2018-04-10CVE: N/A Type: WebappsPlatform: PHPVulnerable App: N/A # Date: 06/04/2018 # Exploit Author: ManhNho # Vendor Homepage: https://www.iptanus.com/ #...
View ArticleClik here to view.
Google Chrome V8 JIT - 'LoadElimination::ReduceTransitionElementsKind' Type...
EDB-ID: 44442Author: Google Security ResearchPublished: 2018-04-10CVE: N/A Type: DosPlatform: MultipleAliases: N/AAdvisory/Source: LinkTags: Type ConfusionVulnerable App: N/A I think this commit has...
View ArticleClik here to view.
SAP Business One CVE-2018-2410 Cross Site Scripting Vulnerability
SAP Business One is prone to an cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. Remote attackers can exploit this issue to execute arbitrary script code...
View ArticleClik here to view.
Adobe PhoneGap Push Plugin CVE-2018-4943 Security Bypass Vulnerability
Adobe PhoneGap Push Plugin is prone to an security-bypass vulnerability. An attacker can exploit this issue to bypass certain same-origin policy restrictions and obtain sensitive information; this may...
View ArticleClik here to view.
OCS Inventory NG ocsreports 2.4 Cross Site Scripting
OCS Inventory NG ocsreports version 2.4 suffers from a cross site scripting vulnerability.MD5 | 67dce20799efa4550a82cd18145be649DownloadAffected Products OCSInventory-ocsreports 2.4 (older releases...
View ArticleClik here to view.
OCS Inventory NG ocsreports 2.4 / 2.3.1 SQL Injection
OCS Inventory NG ocsreports versions 2.4 and 2.3.1 suffer from remote SQL injection vulnerabilities.MD5 | 70b0b52f0aba6fe64eddb67dfcbf2cd9DownloadAffected Products OCS Inventory NG ocsreports 2.4 OCS...
View ArticleClik here to view.
Buddypress Xprofile Custom Fields Type 2.6.3 Remote Code Execution
Buddypress Xprofile Custom Fields Type version 2.6.3 suffers from a remote code execution vulnerability.MD5 | b1271d808196ceb371045fc509388d79Download# Exploit Title: Plugin Buddypress Xprofile Custom...
View ArticleClik here to view.
iScripts SonicBB 1.0 Cross Site Scripting
iScripts SonicBB version 1.0 suffers from a cross site scripting vulnerability.MD5 | 0c5b2a0119a14885255c699fc77a18bcDownload# Exploit Title: iScripts SonicBB 1.0 - Reflected Cross-Site Scripting#...
View ArticleClik here to view.
iScripts Easycreate 3.2.1 Cross Site Scripting
iScripts Easycreate version 3.2.1 suffers from a stored cross site scripting vulnerability.MD5 | 734a39c0d58fe55097c8246f16055e28Download# Exploit Title: iScripts Easycreate 3.2.1 - Stored Cross-Site...
View ArticleClik here to view.
WordPress Google Drive 2.2 Remote Code Execution
WordPress Google Drive plugin version 2.2 suffers from a remote code execution vulnerability.MD5 | b9dd9a86fef8aa3a201f13d251231d11Download# Exploit Title: Plugin Google Drive for WordPress 2.2 a RCE a...
View Article