:: Deepquest ::

Adobe Flash suffers from an image reading / ATF processing heap overflow vulnerability.

A malicious mp4 file can cause stack corruption in Adobe Flash.

Adobe Flash suffers from a use-after-free vulnerability in addProperty.

Merit LILIN IP cameras suffer from cross site request forgery, cross site scripting, hard-coded credential, and various other vulnerabilities.

Various PLANET IP cameras suffer from local file inclusion, arbitrary file read, information disclosure, cross site request forgery, cross site scripting, and hard-coded credential vulnerabilities.

SAP NetWeaver AS JAVA version 7.4 suffers from a cross site scripting vulnerability.

SAP MII version 15.0 suffers from a directory traversal vulnerability.

The TP-Link SC2020n Network Video Camera is vulnerable to OS Command Injection via the web interface. By firing up the telnet daemon, it is possible to gain root on the device. The vulnerability exists at /cgi-bin/admin/servetest, which is accessible with credentials.

Hex: Shard of Fate version 1.0.1.026 suffers from an unquoted path privilege escalation vulnerability.

Multiple Nexon games suffer from an unquoted path privilege escalation vulnerability.