2015 September

This Metasploit module exploits a vulnerability in the Watchguard XCS ‘FixCorruptMail’ script called by root’s crontab which can be exploited to run a command as root within 3 minutes.

Watchguard XCS Remote Command Execution

Posted by deepcore under exploit (No Respond)

This Metasploit module exploits two separate vulnerabilities found in the Watchguard XCS virtual appliance to gain command execution. By exploiting an unauthenticated SQL injection, a remote attacker may insert a valid web user into the appliance database, and get access to the web interface. On the other hand, a vulnerability in the web interface allows […]

Flowdock API Script Insertion

Posted by deepcore under exploit (No Respond)

Flowdock API suffered from a script insertion vulnerability.

Unified Layer Shell Upload

Posted by deepcore under exploit (No Respond)

Due to a server misconfiguration, customers of Unified Layer suffer from a remote shell upload vulnerability.

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

VuFind 1.0 Cross Site Scripting

Good Technology Authentication Insecure Coupling

WinRaR SFX Remote Code Execution

X2Engine 4.2 Cross Site Scripting

X2Engine 4.2 Arbitrary File Upload

X2Engine 4.2 Cross Site Request Forgery

Watchguard XCS FixCorruptMail Local Privilege Escalation

Watchguard XCS Remote Command Execution

Flowdock API Script Insertion

Unified Layer Shell Upload

Tabs Switcher

Categories

Archives

Meta

BLOGROLL