:: Deepquest ::

WPN-XM version 0.8.6 suffers from a cross site request forgery vulnerability.

OpenCart version 2.2.0.0 suffers from a remote PHP code execution vulnerability.

CAM UnZip version 5.1 suffers from a path traversal vulnerability that allows for code execution.

Novell Service Desk versions 7.1.0 and below suffer from code execution, information disclosure, cross site scripting, remote file upload, HQL injection, and traversal vulnerabilities.

Perl version 5.22 suffers from two out-of-bounds reads and multiple small buffer over-read vulnerabilities in the VDir::MapPathA and VDir::MapPathW functions that could potentially be exploited to achieve arbitrary code execution.

WordPress Robo Gallery plugin version 2.0.14 suffers from a code execution vulnerability.

RockMongo version 1.1.8 suffers from cross site request forgery, cross site scripting, and html injection vulnerabilities.

The patch for Issue 70 in IBM Java discovered by Security Explorations in 2013 was found to be faulty. Included are the full report and a proof of concept.

ImPAX Agility version 1.1074.RC.b122.20150602 suffers from multiple cross site scripting vulnerabilities.

Ovidentia module Troubletickets version 7.6 suffers from a remote file inclusion vulnerability.