10 - 2019 - :: Deepquest ::

>> [webapps] WordPress 5.2.4 – Cross-Origin Resource Sharing

USER: deepcore // 2019-10-29 // 0 CMT

WordPress 5.2.4 – Cross-Origin Resource Sharing

>> [local] Intelligent Security System SecurOS Enterprise 10.2 – 'SecurosCtrlService' Unquoted Service Path

USER: deepcore // 2019-10-29 // 0 CMT

Intelligent Security System SecurOS Enterprise 10.2 – ‘SecurosCtrlService’ Unquoted Service Path

>> [webapps] rConfig 3.9.2 – Remote Code Execution

USER: deepcore // 2019-10-29 // 0 CMT

rConfig 3.9.2 – Remote Code Execution

>> [dos] WebKit – Universal XSS in HTMLFrameElementBase::isURLAllowed

USER: deepcore // 2019-10-28 // 0 CMT

WebKit – Universal XSS in HTMLFrameElementBase::isURLAllowed

>> [local] ChaosPro 2.0 – Buffer Overflow (SEH)

USER: deepcore // 2019-10-28 // 0 CMT

ChaosPro 2.0 – Buffer Overflow (SEH)

>> [webapps] delpino73 Blue-Smiley-Organizer 1.32 – 'datetime' SQL Injection

USER: deepcore // 2019-10-28 // 0 CMT

delpino73 Blue-Smiley-Organizer 1.32 – ‘datetime’ SQL Injection

>> [local] JumpStart 0.6.0.0 – 'jswpbapi' Unquoted Service Path

USER: deepcore // 2019-10-28 // 0 CMT

JumpStart 0.6.0.0 – ‘jswpbapi’ Unquoted Service Path

>> [webapps] waldronmatt FullCalendar-BS4-PHP-MySQL-JSON 1.21 – 'description' Cross-Site Scripting

USER: deepcore // 2019-10-28 // 0 CMT

waldronmatt FullCalendar-BS4-PHP-MySQL-JSON 1.21 – ‘description’ Cross-Site Scripting

>> [webapps] waldronmatt FullCalendar-BS4-PHP-MySQL-JSON 1.21 – 'start' SQL Injection

USER: deepcore // 2019-10-28 // 0 CMT

waldronmatt FullCalendar-BS4-PHP-MySQL-JSON 1.21 – ‘start’ SQL Injection

>> [webapps] Part-DB 0.4 – Authentication Bypass

USER: deepcore // 2019-10-28 // 0 CMT

Part-DB 0.4 – Authentication Bypass