vulnerability

October 24, 2023

Mitigating Cisco IOS XE Web UI Vulnerabilities – CVE-2023-20198 and CVE-2023-20273

Tier3 Pakistan and its partners are responding to active, widespread exploitation of two vulnerabilities, CVE-2023-20198 and CVE-2023-20273, affecting Cisco’s Internetworking Operating System (IOS) XE Software Web User Interface (UI). Cisco’s IOS XE Web UI is […]
February 28, 2017

expopakistan.gov.pk – IFRAME Injection

Website : expopakistan.gov.pk Vulnerability : IFRAME Injection Latest check for patch:   20.02.2017 Vulnerability status:   Publicly disclosed Alexa Rank   4921988 expopakistan.gov.pk Description Expo Pakistan 2015 Home. Vulnerable URL: http://www.expopakistan.gov.pk/mission-admin/login.php?err=<h1>XANY</h 1><iframe src=”https://www.openbugbounty.org” height=800 width=800 […]
February 2, 2017

Microsoft Power Point 2016, Java Code Execution

If the user have JAVA (or python or similar interpreters) an attacker can insert jar file or py file into the presentation and trigger it when mouse moves, for easier exploitation the attacker can use ppsx file which will load automatically in presentation mode and once the user opens the file and moves mouse it will trigger the payload.
Microsoft Power Point 2016, Java Code Execution
We value your privacy
We use cookies to enhance your browsing experience, serve personalized content, and analyze our traffic. By clicking "Accept All", and by using this website you agree to our Cookies and Data Protection Policy.
Read more