:: Deepquest ::

Dasan Networks GPON ONT WiFi Router H64X Series suffers from a system configuration download vulnerability.

iSmartAlarm Backend suffers from a server-side request forgery vulnerability.

OrientDB – Code Execution

Microsoft Windows versions 7, 8.1, 2008 R2, 2012 R2, and 2016 R2 EternalBlue SMB remote code execution exploit that leverages the issue noted in MS17-0101.

NfSen version 1.3.7 and AlienVault OSSIM version 4.3.1 suffer from a customfmt command injection vulnerability.

RaidenHTTPD version 2.0.44 suffers from a cross site scripting vulnerability via the user-agent header.

DataTaker DT80 dEX version 1.50.012 suffers from an information disclosure vulnerability.

ObjectPlanet Opinio versions 7.6.3 and below suffer from a cross site scripting vulnerability.

IBM Informix DB-Access utility is vulnerable to a stack based buffer overflow, caused by improper bounds checking which could allow an attacker to execute arbitrary code. The vulnerability is triggered by providing an overly long file parameter value inside a LOAD statement, which is used to insert data from an operating-system file into an existing […]

AGFEO Smart Home ES 5xx / 6xx versions 1.9b and 1.10 suffers from authentication bypass, cross site scripting, and hard-coded private key vulnerabilities.