3 - 2019 - :: Deepquest ::

>> [webapps] Moodle 3.4.1 – Remote Code Execution

USER: deepcore // 2019-03-15 // 0 CMT

Moodle 3.4.1 – Remote Code Execution

>> [webapps] Vembu Storegrid Web Interface 4.4.0 – Multiple Vulnerabilities

USER: deepcore // 2019-03-15 // 0 CMT

Vembu Storegrid Web Interface 4.4.0 – Multiple Vulnerabilities

>> [webapps] ICE HRM 23.0 – Multiple Vulnerabilities

USER: deepcore // 2019-03-15 // 0 CMT

ICE HRM 23.0 – Multiple Vulnerabilities

>> [remote] Mail Carrier 2.5.1 – 'MAIL FROM' Buffer Overflow

USER: deepcore // 2019-03-15 // 0 CMT

Mail Carrier 2.5.1 – ‘MAIL FROM’ Buffer Overflow

>> [webapps] NetData 1.13.0 – HTML Injection

USER: deepcore // 2019-03-15 // 0 CMT

NetData 1.13.0 – HTML Injection

>> [webapps] CMS Made Simple Showtime2 Module 3.6.2 – Authenticated Arbitrary File Upload

USER: deepcore // 2019-03-15 // 0 CMT

CMS Made Simple Showtime2 Module 3.6.2 – Authenticated Arbitrary File Upload

>> [webapps] Laundry CMS – Multiple Vulnerabilities

USER: deepcore // 2019-03-15 // 0 CMT

Laundry CMS – Multiple Vulnerabilities

>> Microsoft Windows MSHTML Engine Edit Remote Code Execution

USER: deepcore // 2019-03-14 // 0 CMT

The Microsoft Windows MSHTML Engine is prone to a vulnerability that allows attackers to execute arbitrary code on vulnerable systems because of improper validation of specially crafted web documents (html,…

>> WordPress GraceMedia Media Player 1.0 Local File Inclusion

USER: deepcore // 2019-03-14 // 0 CMT

WordPress GraceMedia Media Player plugin version 1.0 suffers from a local file inclusion vulnerability.

>> pfSense 2.4.4-p1 (HAProxy Package 0.59_14) Cross Site Scripting

USER: deepcore // 2019-03-14 // 0 CMT

pfSense version 2.4.4-p1 with HAProxy Package version 0.59_14 suffers from a cross site scripting vulnerability.