:: Deepquest ::

SysGauge version 4.5.18 local denial of service proof of concept exploit.

TwonkyMedia Server version 7.0.11-8.5 suffers from a directory traversal vulnerability.

TwonkyMedia Server version 7.0.11-8.5 suffers from a persistent cross site scripting vulnerability.

Square 9 GlobalForms versions 6.2.x and below suffer from a remote blind SQL injection vulnerability.

Allok AVI DivX MPEG to DVD Converter version 2.6.1217 SEH buffer overflow exploit.

This Metasploit module exploits a SQL injection vulnerability in the com_fields component, which was introduced to the core of Joomla in version 3.7.0.

This Metasploit module exploits a remote code execution vulnerability in Exodus Wallet. A vulnerability in the ElectronJS Framework protocol handler can be used to get arbitrary command execution if the user clicks on a specially crafted URL.

This Metasploit module exploits a remote code execution vulnerability that exists in GitStack versions through 2.3.10, caused by an unsanitized argument being passed to an exec function call. This Metasploit module has been tested on GitStack version 2.3.10.

Tenda W308R V2 wireless router version 5.07.48 remote DNS changer proof of concept exploit.

This Metasploit module exploits a command injection vulnerability in the ManageEngine Application Manager product. An unauthenticated user can execute an operating system command under the context of privileged user. The publicly accessible testCredential.do endpoint takes multiple user inputs and validates supplied credentials by accessing the given system. This endpoint calls several internal classes and then […]