:: Deepquest ::

DVD Photo Slideshow Professional version 8.07 suffers from a buffer overflow vulnerability.

iSmartViewPro version 1.5 suffers from a buffer overflow vulnerability.

MedDream PACS Server Premium version 6.7.1.1 suffers from a remote SQL injection vulnerability.

Softneta MedDream PACS Server Premium version 6.7.1.1 suffers from a directory traversal vulnerability.

Tenable WAS-Scanner version 7.4.1708 suffers from a remote command execution vulnerability.

QNAP Photo Station version 5.7.0 suffers from a cross site scripting vulnerability.

This Metasploit module exploits a remote code execution vulnerability in Apache Struts versions 2.3 through 2.3.4, and 2.5 through 2.5.16. Remote code execution can be performed via an endpoint that makes use of a redirect action. Native payloads will be converted to executables and dropped in the server’s temp dir. If this fails, try a […]

This is a small tutorial write up that provides a DynoRoot exploit proof of concept.

Apache Roller version 5.0.3 suffers from an XML external entity injection vulnerability that allows for file disclosure.

Jorani Leave Management System version 0.6.5 suffers from a cross site scripting vulnerability.