:: Deepquest ::

vBulletin version 4.2.5 with vBSEO version 3.6.1 suffers from an open redirection vulnerability.

vBulletin version 4.x.x with DragonByte SEO version 2.0.31 suffers from an open redirection vulnerability.

WordPress Cerber Security, Antispam, and Malware Scan plugin version 8.0 suffers from multiple bypass vulnerabilities.

This Metasploit module exploits an arbitrary file upload vulnerability in Feng Office version 3.7.0.5. The application allows unauthenticated users to upload arbitrary files. There is no control of any session. All files are sent under /tmp directory. The .htaccess file under the /tmp directory prevents files with the php, php2, and php3 extensions. This exploit […]

FTP Server version 1.32 suffers from a denial of service vulnerability.

Joomla Content component version 3.x suffers from a remote SQL injection vulnerability.

A vulnerability in the update service of Cisco Webex Meetings Desktop App for Windows could allow a local attacker to elevate privileges. Cisco Webex Meetings Desktop App versions 33.6.4.15, 33.6.5.2, 33.7.0.694, 33.7.1.15, 33.7.2.24, 33.7.3.7, 33.8.0.779, 33.8.1.13, and 33.8.2.7 are affected.

Joomla J2Store versions prior to 3.3.7 suffer from a remote SQL injection vulnerability.

This archive contains all of the 319 exploits added to Packet Storm in February, 2019.

Cisco WebEx Meetings < 33.6.6 / < 33.9.1 – Privilege Escalation