:: Deepquest ::

Hotel Management System version 1.0 authenticated remote code execution exploit.

Company Visitor Management System (CVMS) version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

Zoo Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

Simple Grocery Store Sales and Inventory System 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

This Metasploit module exploits CVE-2019-1458, an arbitrary pointer dereference vulnerability within win32k which occurs due to an uninitialized variable, which allows user mode attackers to write a limited amount of controlled data to an attacker controlled address in kernel memory. By utilizing this vulnerability to execute controlled writes to kernel memory, an attacker can gain […]

aaPanel 6.6.6 – Privilege Escalation & Remote Code Execution (Authenticated)

Restaurant Reservation System 1.0 – ‘date’ SQL Injection (Authenticated)

Company Visitor Management System (CVMS) 1.0 – Authentication Bypass

Employee Management System 1.0 – Cross Site Scripting (Stored)

Alumni Management System 1.0 – Authentication Bypass