:: Deepquest ::

The vulnerability laboratory core research team discovered a redirect web vulnerability in the official Cisco Webex meet…

Check Box 2016 Q2 Survey suffers from insecure direct object reference, open redirection, and directory traversal vulnerabilities.

TrueOnline is a Thai ISP that distributes customized versions of ZyXEL and Billion routers – customized with vulnerabilities that is. The routers contain several default administrative accounts and command injections that can be abused by authenticated and unauthenticated attackers.

WordPress Direct Download for WooCommerce versions up to 1.15 suffer from a local file inclusion vulnerability.

Atlassian Jira version 7.1.7 suffers from a cross site scripting vulnerability.

dirList version 0.3.0 suffers from file upload bypass and remote command execution vulnerabilities.

BoZon version 2.4 suffers from a pre-authentication remote command execution vulnerability.

http://rayong2.go.th/sht.html notified by TheWayEnd

Salesforce event registration functionality allows for malicious script code to be inserted.

Hassium CMS version 0.10 suffers from a cross site scripting vulnerability.