OX App Suite 7.10.6 Cross Site Scripting / Deserialization Issue – Torchsec
April 11th, 2024 | ๐
TTS Dear subscribers, We're sharing our latest advisory with you and like to thank everyone who contributed in finding and
April 11th, 2024 | ๐
TTS Dear subscribers, We're sharing our latest advisory with you and like to thank everyone who contributed in finding and
February 14th, 2024 | ๐
iSpeech.org Dear subscribers, We're sharing our latest advisory with you and like to thank everyone who contributed in finding and
January 10th, 2024 | ๐
iSpeech Internal reference: MWB-2261Type: CWE-78 (Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection'))Component: backendReport confidence:
January 10th, 2024 | ๐
https://www.ispeech.org/text.to.speech Internal reference: MWB-2315Type: CWE-284 (Improper Access Control)Component: backendReport confidence: ConfirmedSolution status: Fixed by vendorLast affected revision: OX App Suite
August 10th, 2023 | ๐
Text to Speech # Exploit Title: Emagic Data Center Management Suite v6.0 - OS Command Injection# Date: 03-08-2023# Exploit Author:
August 3rd, 2023 | ๐
iSpeech Internal reference: OXUIB-2282Type: CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))Component: frontendReport confidence: ConfirmedSolution status: Fixed
July 31st, 2023 | ๐
https://www.ispeech.org ========================================================================================================| # Title : Codecanyon Bitcoin Tools Suite v1.0 LFI Vulnerability || # Author : indoushka || # Tested
July 7th, 2023 | ๐
iSpeech ====================================================================================================================================| # Title : CakePHP Test Suite v2.7.0 Xss Vulnerability || # Author : indoushka || # Tested on
June 28th, 2023 | ๐
https://www.ispeech.org/text.to.speech # Exploit Title: Office Suite Premium 10.9.1.42602 - Cross-Site Scripting (reflected)# Date: 06-26-2023# Exploit Author: tmrswrr# Vendor Homepage: https://www.mobisystems.com/#
June 28th, 2023 | ๐
https://www.ispeech.org/text.to.speech # Exploit Title: Office Suite Premium 10.9.1.42602 - Path Traversal# Date: 06-26-2023# Exploit Author: tmrswrr# Vendor Homepage: https://www.mobisystems.com/# Software
June 28th, 2023 | ๐
https://www.ispeech.org/text.to.speech # Exploit Title: Office Suite Premium 10.9.1.42602 - Local File Inclusion # Date: 06-26-2023# Exploit Author: tmrswrr# Vendor Homepage:
June 23rd, 2023 | ๐
Speech Synthesis Internal reference: MWB-1994Type: CWE-922 (Insecure Storage of Sensitive Information)Component: backendReport confidence: ConfirmedSolution status: Fixed by vendorLast affected revision:
May 9th, 2023 | ๐
TTS Internal reference: OXUIB-2130Type: CWE-200 (Exposure of Sensitive Information to an Unauthorized Actor)Component: frontendReport confidence: ConfirmedSolution status: Fixed by vendorLast
May 3rd, 2023 | ๐
Text to Speech Demo # Exploit Title: SoftExpert (SE) Suite v2.1.3 - Local File Inclusion# Date: 27-04-2023# Exploit Author: Felipe
Gloss