:: Deepquest :: This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Month: September 2020

Security

[webapps] Tailor Management System – 'id' SQL Injection

Tailor Management System – ‘id’ SQL...

deepcoreSep 9, 2020

Security

[local] Input Director 1.4.3 – 'Input Director' Unquoted Service Path

Input Director 1.4.3 – ‘Input Director’...

deepcoreSep 9, 2020

exploit

Cabot 0.11.12 Cross Site Scripting

Cabot version 0.11.12 suffers from a...

deepcoreSep 8, 2020

exploit

Joomla GMapFP J3.5 / J3.5F Arbitrary File Upload

Joomla GMapFP component versions J3.5 and...

deepcoreSep 8, 2020

exploit

Grocy 2.7.1 Cross Site Scripting

Grocy version 2.7.1 suffers from a...

deepcoreSep 8, 2020

exploit

Rapid7 Nexpose Installer 6.6.39 Local Privilege Escalation

Rapid7 Nexpose Installer version 6.6.39 suffers...

deepcoreSep 8, 2020

exploit

macOS cfprefsd Arbitrary File Write / Local Privilege Escalation

This Metasploit module exploits an arbitrary...

deepcoreSep 8, 2020

Security

[local] ShareMouse 5.0.43 – 'ShareMouse Service' Unquoted Service Path

ShareMouse 5.0.43 – ‘ShareMouse Service’ Unquoted...

deepcoreSep 8, 2020

Security

[webapps] ManageEngine Applications Manager 14700 – Remote Code Execution (Authenticated)

ManageEngine Applications Manager 14700 – Remote...

deepcoreSep 7, 2020

Security

[webapps] grocy 2.7.1 – Persistent Cross-Site Scripting

grocy 2.7.1 – Persistent Cross-Site Scripting

deepcoreSep 7, 2020