Xc0re Blog will be back, very soon . (07/12/2016)
Update: 2017 => You can find latest posts here… https://www.xc0re.net
Advertisements
September 25, 2012
Will be back soon
About 0x90
Packet Storm Security- Razer Cortex Debugger Remote Command Execution December 17, 2018Razer Cortex has a CEF debugger stub enabled by default allowing arbitrary remote command execution.
- Zoho ManageEngine OpManager 12.3 SQL Injection December 17, 2018Zoho ManageEngine OpManager versions 12.3 before 123238 suffer from a remote SQL injection vulnerability in the getGraphData API.
- ITAdvisorsNepal 9Qube Testimonials 1.0 Database Disclosure December 17, 2018ITAdvisorsNepal 9Qube Testimonials module version 1.0 suffers from a database disclosure vulnerability.
- Simple CMS PHPJabbers Stivasoft 4.0 Database Disclosure December 17, 2018Simple CMS PHPJabbers Stivasoft version 4.0 suffers from a database disclosure vulnerability.
- WordPress Dev-Custom-Management VerzDesign 1.0 Database Disclosure / Shell Upload December 17, 2018WordPress Dev-Custom-Management VerzDesign plugin version 1.0 suffers from database disclosure and remote shell upload vulnerabilities.
- WordPress Mirrorwp-Backups 4.8 Database Disclosure December 17, 2018WordPress Mirrorwp-Backups plugin version 4.8 suffers from a database disclosure vulnerability.
- WordPress Ithemes-BackupBuddy Amazon WP-S3 2.9 Database Disclosure December 17, 2018WordPress Ithemes-BackupBuddy Amazon WP-S3 plugin version 2.9 suffers from a database disclosure vulnerability.
- WordPress Lumise 4.9 Database Disclosure December 17, 2018WordPress Lumise plugin version 4.9 suffers from a database disclosure vulnerability.
- Windows Persistent Service Installer December 17, 2018This Module will generate and upload an executable to a remote host and then makes it a persistent service. It will create a new service which will start the payload whenever the service is running. Admin or system privilege is required.
- KARMA 6.0.0 SQL Injection December 17, 2018KARMA version 6.0.0 suffers from a remote SQL injection vulnerability.
- Razer Cortex Debugger Remote Command Execution December 17, 2018
- Bugtraq
- Secunia Research: libexif EXIF_IFD_INTEROPERABILITY / EXIF_IFD_EXIF Denial of Service Vulnerability December 18, 2018
- Secunia Research: LibRaw Multiple Denial of Service Vulnerabilities December 18, 2018
- Zoho ManageEngine OpManager 12.3 before 123238 allows SQL injection via the getGraphData API December 17, 2018
- WebKitGTK+ and WPE WebKit Security Advisory WSA-2018-0009 December 14, 2018
- [SECURITY] [DSA 4354-1] firefox-esr security update December 13, 2018
- [security bulletin] MFSBGN03835 rev.1 - Fortify Software Security Center (SSC), Remote Unauthorized Access December 13, 2018
Advertisements
Leave a Reply