:: Deepquest ::

ExpressVPN VPN Router version 1.0 suffers from an integer overflow vulnerability.

Chrome V8 Javascript Engine remote code execution zero day exploit. Google is expected to release an update to their browser on tuesday 04/14/2021 that will address this vulnerability.

Blitar Tourism version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

The access limit check for non-local admins when accessing the SCM remotely can be bypassed by requesting MAXIMUM_ALLOWED, leading to gaining access to start services etc.

This Metasploit module exploits a vulnerability in the getprofile.sh script of Nagios XI versions prior to 5.6.6 in order to upload a malicious check_ping plugin and thereby execute arbitrary commands. For Nagios XI 5.2.0 through 5.4.13, the commands are run as the nagios user. For versions 5.5.0 through 5.6.5, the commands are run as root. […]

jQuery version 1.2 suffers from a cross site scripting vulnerability.

jQuery version 1.0.3 suffers from a cross site scripting vulnerability.

Digital Crime Report Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

Trojan.Win32.Jorik.qje malware suffers from an insecure permissions vulnerability.

Genexis PLATINUM 4410 version 2.1 P4410-V2-1.28 suffers from a remote command execution vulnerability.