OX App Suite 7.10.6 Cross Site Scripting / Deserialization Issue – Torchsec
April 11th, 2024 | ๐
TTS Dear subscribers, We're sharing our latest advisory with you and like to thank everyone who contributed in finding and
Browsing the "suite" Tag
OX App Suite 7.10.6 Cross Site Scirpting / Denial Of Service – Torchsec
February 14th, 2024 | ๐
iSpeech.org Dear subscribers, We're sharing our latest advisory with you and like to thank everyone who contributed in finding and
OX App Suite 7.10.6 XSS / Command Execution / LDAP Injection – Torchsec
January 10th, 2024 | ๐
iSpeech Internal reference: MWB-2261Type: CWE-78 (Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection'))Component: backendReport confidence:
OX App Suite 7.10.6 Access Control / Cross Site Scripting – Torchsec
January 10th, 2024 | ๐
https://www.ispeech.org/text.to.speech Internal reference: MWB-2315Type: CWE-284 (Improper Access Control)Component: backendReport confidence: ConfirmedSolution status: Fixed by vendorLast affected revision: OX App Suite
Emagic Data Center Management Suite 6.0 Remote Command Execution – Torchsec
August 10th, 2023 | ๐
Text to Speech # Exploit Title: Emagic Data Center Management Suite v6.0 - OS Command Injection# Date: 03-08-2023# Exploit Author:
OX App Suite SSRF / SQL Injection / Cross Site Scripting – Torchsec
August 3rd, 2023 | ๐
iSpeech Internal reference: OXUIB-2282Type: CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))Component: frontendReport confidence: ConfirmedSolution status: Fixed
Codecanyon Bitcoin Tools Suite 1.0 Local File Inclusion – Torchsec
July 31st, 2023 | ๐
https://www.ispeech.org ========================================================================================================| # Title : Codecanyon Bitcoin Tools Suite v1.0 LFI Vulnerability || # Author : indoushka || # Tested
CakePHP Test Suite 2.7.0 Cross Site Scripting – Torchsec
July 7th, 2023 | ๐
iSpeech ====================================================================================================================================| # Title : CakePHP Test Suite v2.7.0 Xss Vulnerability || # Author : indoushka || # Tested on
Office Suite Premium 10.9.1.42602 Cross Site Scripting – Torchsec
June 28th, 2023 | ๐
https://www.ispeech.org/text.to.speech # Exploit Title: Office Suite Premium 10.9.1.42602 - Cross-Site Scripting (reflected)# Date: 06-26-2023# Exploit Author: tmrswrr# Vendor Homepage: https://www.mobisystems.com/#
Office Suite Premium 10.9.1.42602 Path Traversal – Torchsec
June 28th, 2023 | ๐
https://www.ispeech.org/text.to.speech # Exploit Title: Office Suite Premium 10.9.1.42602 - Path Traversal# Date: 06-26-2023# Exploit Author: tmrswrr# Vendor Homepage: https://www.mobisystems.com/# Software
Office Suite Premium 10.9.1.42602 Local File Inclusion – Torchsec
June 28th, 2023 | ๐
https://www.ispeech.org/text.to.speech # Exploit Title: Office Suite Premium 10.9.1.42602 - Local File Inclusion # Date: 06-26-2023# Exploit Author: tmrswrr# Vendor Homepage:
OX App Suite SSRF / Resource Consumption / Command Injection – Torchsec
June 23rd, 2023 | ๐
Speech Synthesis Internal reference: MWB-1994Type: CWE-922 (Insecure Storage of Sensitive Information)Component: backendReport confidence: ConfirmedSolution status: Fixed by vendorLast affected revision:
OX App Suite XSS / Information Disclosure / Authorization Bypass – Torchsec
May 9th, 2023 | ๐
TTS Internal reference: OXUIB-2130Type: CWE-200 (Exposure of Sensitive Information to an Unauthorized Actor)Component: frontendReport confidence: ConfirmedSolution status: Fixed by vendorLast
SoftExpert Suite 2.1.3 Local File Inclusion – Torchsec
May 3rd, 2023 | ๐
Text to Speech Demo # Exploit Title: SoftExpert (SE) Suite v2.1.3 - Local File Inclusion# Date: 27-04-2023# Exploit Author: Felipe
-
Donate Via Wallets
-
MetaMask -
Trust Wallet -
Binance Wallet -
WalletConnect
-
-
Popular
Event Management 1.0 SQL Injection – Torchsec March 28, 2024 # Exploit Title: Event Management - SQL Injection# Application: Event… (11)- Artica Proxy Unauthenticated PHP Deserialization… March 27, 2024 ### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework##class MetasploitModule… (8)
- Siklu MultiHaul TG Series Credential Disclosure… March 29, 2024 # Exploit Title: Siklu MultiHaul TG series - unauthenticated credential… (8)
Google Sues App Developers Over Fake Crypto… April 8, 2024 ๎ Apr 08, 2024๎ NewsroomInvestment Scam / Mobile Security Google has filed… (8)
๐ฅMembers
-
๐ Forum Groups
-
linktr.ee/obewyn
Gloss