3 - 2021 - :: Deepquest ::

[EXPLOIT]

>> MyBB OUGC Feedback 1.8.22 Cross Site Scripting

USER: deepcore // 2021-03-12 // 0 CMT

MyBB OUGC Feedback plugin version 1.8.22 suffers from a cross site scripting vulnerability.

[EXPLOIT]

>> Trojan-Spy.Win32.KeyLogger.qt Insecure Permissions

USER: deepcore // 2021-03-12 // 0 CMT

Trojan-Spy.Win32.KeyLogger.qt malware suffers from an insecure permissions vulnerability.

[EXPLOIT]

>> Nsasoft Hardware Software Inventory 1.6.4.0 Denial Of Service

USER: deepcore // 2021-03-12 // 0 CMT

Nsasoft Hardware Software Inventory version 1.6.4.0 suffers from a denial of service vulnerability.

[EXPLOIT]

>> Trojan-Dropper.Win32.Hamer.10 Denial Of Service

USER: deepcore // 2021-03-12 // 0 CMT

Trojan-Dropper.Win32.Hamer.10 malware suffers from a denial of service vulnerability.

[EXPLOIT]

>> F5 Big IP TMM uri_normalize_host Information Disclosure / Out-Of-Bounds Write

USER: deepcore // 2021-03-12 // 0 CMT

Big IP’s Traffic Management Microkernels (TMM) URI normalization incorrectly handles invalid IPv6 hostnames allowing for information disclosure and an out-of-bounds write condition.

[EXPLOIT]

>> F5 Big IP ASM is_hdr_criteria_matches Buffer Overflow

USER: deepcore // 2021-03-12 // 0 CMT

The bd daemon, which runs as part of the F5 BIG-IP Application Security Manager (ASM), is vulnerable to a stack-based buffer overflow when processing overlong HTTP response headers in the…