11 - 2015 - :: Deepquest ::

>> FBZX 2.10 Local Buffer Overflow

USER: deepcore // 2015-11-12 // 0 CMT

FBZX versions 2.10 and below are prone to a stack-based buffer overflow vulnerability because the application fails to perform adequate boundary-checks on user-supplied input. An attacker could exploit this issue…

[EXPLOIT]

>> R-Scripts VRS 7R Cross Site Request Forgery / Cross Site Scripting

USER: deepcore // 2015-11-12 // 0 CMT

PHP Vacation Rental Script version 7R suffers from cross site request forgery and cross site scripting vulnerabilities.

[SECURITY]

>> [local] – TACK 1.07 – Local Stack-Based Buffer Overflow

USER: deepcore // 2015-11-12 // 0 CMT

TACK 1.07 – Local Stack-Based Buffer Overflow

[SECURITY]

>> [local] – TUDU 0.82 – Local Stack-Based Buffer Overflow

USER: deepcore // 2015-11-12 // 0 CMT

TUDU 0.82 – Local Stack-Based Buffer Overflow

[SECURITY]

>> [webapps] – R-Scripts Vacation Rental Script 7R – Multiple Vulnerabilities

USER: deepcore // 2015-11-12 // 0 CMT

R-Scripts Vacation Rental Script 7R – Multiple Vulnerabilities

[EXPLOIT]

>> Magento Bug Bounty #24 – Multiple CSRF Web Vulnerabilities

USER: deepcore // 2015-11-11 // 0 CMT

The Vulnerability Laboratory Core Research Team discovered multiple client-side cross site request forgery vulnerabilities in the official Magento online service web-application.