4 - 2016 - :: Deepquest ::

>> [remote] – Advantech WebAccess Dashboard Viewer Arbitrary File Upload

USER: deepcore // 2016-04-26 // 0 CMT

Advantech WebAccess Dashboard Viewer Arbitrary File Upload

>> Notes v4.5 iOS – File Include Web Vulnerability

USER: deepcore // 2016-04-25 // 0 CMT

The vulnerability laboratory core research team discovered a local file include vulnerability in the official Notes v4.5 iOS mobile web-application (wifi).

[EXPLOIT]

>> VoipNow v4.0.1 – (xajax_handler) Persistent Vulnerability

USER: deepcore // 2016-04-25 // 0 CMT

The vulnerability laboratory core research team discovered an application-side input validation vulnerability in the VoipNow v4.0.1 web-application.

[EXPLOIT]

>> Sophos XG Firewall (SF01V) – Persistent Web Vulnerability

USER: deepcore // 2016-04-25 // 0 CMT

An independent vulnerability laboratory researcher discovered an application-side validation vulnerability in the official Sophos XG Firewall (SF01V) appliance web-application.

[EXPLOIT]

>> Trend Micro (Account) – Email Spoofing Web Vulnerability

USER: deepcore // 2016-04-25 // 0 CMT

The Vulnerability Laboratory Core Research Team discovered an application-side vulnerability in the official Trend Micro Accounts online service web-application.