11 - 2019 - :: Deepquest ::

>> [webapps] Fastweb Fastgate 0.00.81 – Remote Code Execution

USER: deepcore // 2019-11-13 // 0 CMT

Fastweb Fastgate 0.00.81 – Remote Code Execution

>> [webapps] gSOAP 2.8 – Directory Traversal

USER: deepcore // 2019-11-13 // 0 CMT

gSOAP 2.8 – Directory Traversal

>> [webapps] Technicolor TC7300.B0 – 'hostname' Persistent Cross-Site Scripting

USER: deepcore // 2019-11-13 // 0 CMT

Technicolor TC7300.B0 – ‘hostname’ Persistent Cross-Site Scripting

>> [webapps] Technicolor TD5130.2 – Remote Command Execution

USER: deepcore // 2019-11-13 // 0 CMT

Technicolor TD5130.2 – Remote Command Execution

>> [webapps] FUDForum 3.0.9 – Remote Code Execution

USER: deepcore // 2019-11-13 // 0 CMT

FUDForum 3.0.9 – Remote Code Execution

>> GCafe 3.0 Unquoted Service Path

USER: deepcore // 2019-11-12 // 0 CMT

GCafe version 3.0 suffers from a gbClienService unquoted service path vulnerability.

>> Alps HID Monitor Service 8.1.0.10 Unquoted Service Path

USER: deepcore // 2019-11-12 // 0 CMT

Alps HID Monitor Service version 8.1.0.10 suffers from an ApHidMonitorService unquoted service path vulnerability.

>> PunBB 1.4.4 Database Disclosure

USER: deepcore // 2019-11-12 // 0 CMT

PunBB with SQLite appears to store its database within the webroot, allowing it to be retrieved by attackers.

>> XML Notepad 2.8.0.4 XML External Entity Injection

USER: deepcore // 2019-11-12 // 0 CMT

XML Notepad version 2.8.0.4 suffers from an XML external entity injection vulnerability.

>> iOS IOUSBDeviceFamily 12.4.1 Heap Corruption Proof Of Concept

USER: deepcore // 2019-11-12 // 0 CMT

iOS IOUSBDeviceFamily version 12.4.1 IOInterruptEventSource heap corruption proof of concept exploit.