:: Deepquest ::

ACal version 2.2.6 suffers from a one-click remote code execution vulnerability.

Compass Security identified a security feature bypass vulnerability in Microsoft Windows. Due to the absence of integrity verification requirements for the RPC protocol and in particular the Task Scheduler, a man-in-the-middle attacker can relay his victim’s NTLM authentication to a target of his choice over the RPC protocol. Provided the victim has administrative privileges on […]

ManageEngine AssetExplorer versions prior to 6.5 (6503) suffer from an authenticated remote command execution vulnerability.

http://odpc1.ddc.moph.go.th/LPHJ/public/site/images/zbi/Ma.gif notified by Moroccan Revolution

Subrion CMS version 4.2.1 suffers from a cross site scripting vulnerability.

Subrion CMS version 4.2.1 suffers from a cross site request forgery vulnerability.

Dameware Remote Support version 12.1.1.273 suffers from a buffer overflow vulnerability.

Netlink XPON 1GE WiFi V2801RGW suffers from a remote command execution vulnerability. Version 3.3.0-190627 is affected.

E-Commerce System version 1.0 suffers from a remote code execution vulnerability.

Cellebrite UFED device implements local operating system policies that can be circumvented to obtain a command prompt. From there privilege escalation is possible using public exploits. Versions 5.0 through 7.5.0.845 are affected.