:: Deepquest ::

QNAP QTS versions prior to 4.2.4 suffer from a sensitive data exposure vulnerability that allows for privilege escalation.

http://plan.correct.go.th notified by RxR

GLink Word Link Script version 1.2.3 suffers from a remote SQL injection vulnerability.

Joomla Extra Search component version 2.2.8 suffers from a remote SQL injection vulnerability.

websiteConnector.js content script in LastPass allows for proxying of internal RPC commands.

Portable OpenSSH supports running on Cygwin. However, the SFTP client only filters out forward slashes (in do_lsreaddir()) and the directory names “.” and “..” (in download_dir_internal()). On Windows, including in Cygwin, backslashes can a lso be used for directory traversal.

Disk Sorter Enterprise version 9.5.12 GET buffer overflow SEH exploit.

Solare Datensysteme GmbH Solar-Log versions 250, 300, 500, 800e, 1000, 1000 PM+, 1200, and 2000 suffer from cross site request forgery, cross site scripting, file upload, information disclosure, and denial of service vulnerabilities.

This Metasploit module will setup an SMTP server expecting a connection from SysGauge 1.5.18 via its SMTP server validation. The module sends a malicious response along in the 220 service ready response and exploits the client, resulting in an unprivileged shell.