:: Deepquest ::

…

Facebook And Google Reviews System For Business version 1.0 suffers from a cross site request forgery vulnerability.

Angry IP Scanner version 3.5.3 denial of service proof of concept exploit.

Huawei Router HG532e command execution exploit.

An exploitable arbitrary file creation weakness has been identified in Mikrotik RouterOS that can be leveraged by a malicious attacker to exploit all known versions of Mikrotik RouterOS. The RouterOS contains a telnet client based on GNU inetutils with modifications to remove shell subsystem. However an attacker can leverage the “set tracefile” option to write […]

GNU inetutils versions 1.9.4 and below are vulnerable to a stack overflow vulnerability in the client-side environment variable handling which can be exploited to escape restricted shells on embedded devices. Most modern browsers no longer support telnet:// handlers, but in instances where URI handlers are enabled to the inetutils telnet client this issue maybe remotely […]

Facebook And Google Reviews System For Businesses version 1.1 suffers from a remote SQL injection vulnerability.

Facebook And Google Reviews System For Businesses version 1.1 suffers from a code execution vulnerability.

This Metasploit module exploits a type confusion bug in the Javascript Proxy object in WebKit. The DFG JIT does not take into account that, through the use of a Proxy, it is possible to run arbitrary JS code during the execution of a CreateThis operation. This makes it possible to change the structure of e.g. […]

Cisco RV110W suffers from password disclosure and command execution vulnerabilities.