:: Deepquest ::

IObit Uninstaller 9.5.0.15 – ‘IObit Uninstaller Service’ Unquoted Service Path

Clinic Management System 1.0 – Unauthenticated Remote Code Execution

Hostel Management System 2.0 – ‘id’ SQL Injection (Unauthenticated)

AirControl 1.4.2 – PreAuth Remote Code Execution

VMware vCenter Server version 6.7 authentication bypass exploit.

QuickBox Pro versions 2.1.8 and below suffer from an authenticated remote code execution vulnerability.

Microsoft Windows SMBGhost pre-authentication remote code execution exploit.

This Metasploit module exploits a SQL injection vulnerability found in vBulletin versions 5.6.1 and below. This module uses the getIndexableContent vulnerability to reset the administrator’s password and it then uses the administrators login information to achieve remote code execution on the target. This module has been tested successfully on vBulletin version 5.6.1 on the Ubuntu […]

WordPress BBPress plugin version 2.5 suffers from an unauthenticated privilege escalation vulnerability.

We-Com Municipality Portal CMS version 2.1.x suffers from cross site scripting and remote SQL injection vulnerabilities.