:: Deepquest :: This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Month: November 2015

exploit

TestLink 1.9.14 Cross Site Request Forgery

TestLink version 1.9.14 suffers from a...

deepcoreNov 10, 2015

exploit

WordPress Ajax Load More PHP Upload

This Metasploit module exploits an arbitrary...

deepcoreNov 10, 2015

Security

[webapps] – eBay Magento CE <= 1.9.2.1 – Unrestricted Cron Script (Potential Code Execution / DoS)

eBay Magento CE <= 1.9.2.1 –...

deepcoreNov 10, 2015

Security

[webapps] – Google AdWords API PHP client library <= 6.2.0 – Arbitrary PHP Code Execution

Google AdWords API PHP client library...

deepcoreNov 10, 2015

Security

[remote] – Huawei HG630a and HG630a-50 – Default SSH Admin Password on ADSL Modems

Huawei HG630a and HG630a-50 – Default...

deepcoreNov 10, 2015

Security

[webapps] – Google AdWords <= 6.2.0 API client libraries – XML eXternal Entity Injection (XXE)

Google AdWords <= 6.2.0 API client...

deepcoreNov 10, 2015

Security

[webapps] – Jenkins 1.633 – Unauthenticated Credential Recovery

Jenkins 1.633 – Unauthenticated Credential Recovery

deepcoreNov 10, 2015

Security

[webapps] – YESWIKI 0.2 – Path Traversal Vulnerability

YESWIKI 0.2 – Path Traversal Vulnerability

deepcoreNov 10, 2015

Security

[dos] – PHPMyLicense 3.0.0 – 3.1.4 – DoS

PHPMyLicense 3.0.0 – 3.1.4 – DoS

deepcoreNov 10, 2015

Security

[dos] – FreeType 2.6.1 TrueType tt_sbit_decoder_load_bit_aligned Heap-Based Out-of-Bounds Read

FreeType 2.6.1 TrueType tt_sbit_decoder_load_bit_aligned Heap-Based Out-of-Bounds...

deepcoreNov 9, 2015