9 - 2019 - :: Deepquest ::

>> [remote] Inteno IOPSYS Gateway – Improper Access Restrictions

USER: deepcore // 2019-09-16 // 0 CMT

Inteno IOPSYS Gateway – Improper Access Restrictions

>> FTPShell Client 6.74 Buffer Overflow

USER: deepcore // 2019-09-14 // 0 CMT

FTPShell Client version 6.74 suffers from a local buffer overflow denial of service vulnerability.

>> Folder Lock 7.7.9 Denial Of Service

USER: deepcore // 2019-09-14 // 0 CMT

Folder Lock version 7.7.9 suffers from a denial of service vulnerability.

>> Dolibarr ERP-CRM 10.0.1 Cross Site Scripting

USER: deepcore // 2019-09-14 // 0 CMT

Dolibarr ERP-CRM version 10.0.1 suffers from a user-agent cross site scripting vulnerability.

>> phpMyAdmin 4.9.0.1 Cross Site Request Forgery

USER: deepcore // 2019-09-14 // 0 CMT

phpMyAdmin version 4.9.0.1 suffers from a cross site request forgery vulnerability.

>> Piwigo 2.9.5 Cross Site Request Forgery / Cross Site Scripting

USER: deepcore // 2019-09-14 // 0 CMT

Piwigo version 2.9.5 suffers from cross site request forgery and cross site scripting vulnerabilities.

>> [webapps] College-Management-System 1.2 – Authentication Bypass

USER: deepcore // 2019-09-14 // 0 CMT

College-Management-System 1.2 – Authentication Bypass

>> [webapps] Ticket-Booking 1.4 – Authentication Bypass

USER: deepcore // 2019-09-14 // 0 CMT

Ticket-Booking 1.4 – Authentication Bypass

>> Opencart 2.3.0.2 Pre-Auth Remote Command Execution

USER: deepcore // 2019-09-13 // 0 CMT

Opencart version 2.3.0.2 pre-authentication remote command execution exploit.

>> Generic Zip Slip Traversal

USER: deepcore // 2019-09-13 // 0 CMT

This is a generic arbitrary file overwrite technique, which typically results in remote command execution. This targets a simple yet widespread vulnerability that has been seen affecting a variety of…