CVE-2021-25057
The Translation Exchange WordPress plugin through 1.0.14 was vulnerable to Authenticated Stored Cross-Site Scripting (XSS) within the Project Key text field found in the plugin's…
Devamını oku
Day: Şubat 21, 2022
CVE-2021-25055
The FeedWordPress plugin before 2022.0123 is affected by a Reflected Cross-Site Scripting (XSS) within the "visibility" parameter. Devamını Oku
CVE-2021-24921
The Advanced Database Cleaner WordPress plugin before 3.0.4 does not sanitise and escape $_GET keys and values before outputting them back in attributes, leading to…
CVE-2021-24867
Numerous Plugins and Themes from the AccessPress Themes (aka Access Keys) vendor are backdoored due to their website being compromised. Only plugins and themes downloaded…
[local] Cyclades Serial Console Server 3.3.0 – Local Privilege Escalation
Cyclades Serial Console Server 3.3.0 – Local Privilege Escalation Exploit ile ilgili teknik detaylar için Devamını Oku Kaynak: Exploit-DB.com RSS Feed
[webapps] FileCloud 21.2 – Cross-Site Request Forgery (CSRF)
FileCloud 21.2 – Cross-Site Request Forgery (CSRF) Exploit ile ilgili teknik detaylar için Devamını Oku Kaynak: Exploit-DB.com RSS Feed
[webapps] Dbltek GoIP – Local File Inclusion
Dbltek GoIP – Local File Inclusion Exploit ile ilgili teknik detaylar için Devamını Oku Kaynak: Exploit-DB.com RSS Feed
[local] Microsoft Gaming Services 2.52.13001.0 – Unquoted Service Path
Microsoft Gaming Services 2.52.13001.0 – Unquoted Service Path Exploit ile ilgili teknik detaylar için Devamını Oku Kaynak: Exploit-DB.com RSS Feed
[webapps] WordPress Plugin WP User Frontend 3.5.25 – SQLi (Authenticated)
WordPress Plugin WP User Frontend 3.5.25 – SQLi (Authenticated) Exploit ile ilgili teknik detaylar için Devamını Oku Kaynak: Exploit-DB.com RSS Feed
[webapps] Thinfinity VirtualUI 2.5.41.0 – IFRAME Injection
Thinfinity VirtualUI 2.5.41.0 – IFRAME Injection Exploit ile ilgili teknik detaylar için Devamını Oku Kaynak: Exploit-DB.com RSS Feed