:: Deepquest ::

Dental Clinic Appointment Reservation System version 1.0 suffers from a persistent cross site scripting vulnerability.

Dental Clinic Appointment Reservation System version 1.0 suffers from a cross site request forgery vulnerability.

Backdoor.Win32.Danton.43 malware suffers from a man-in-the-middle vulnerability.

Backdoor.Win32.Agent.oda malware suffers from a buffer overflow vulnerability.

Advanced Guestbook version 2.4.4 suffers from a persistent cross site scripting vulnerability.

Backdoor.Win32.Antilam.14.d malware suffers from a code execution vulnerability.

IPFire version 2.25 suffers from a remote code execution vulnerability.

The DBUtil_2_3.sys driver distributed by Dell exposes an unprotected IOCTL interface that can be abused by an attacker to read and write kernel-mode memory.

This Metasploit module leverages a UAC bypass (TokenMagic) in order to spawn a process/conduct a DLL hijacking attack to gain SYSTEM-level privileges. Windows 7 through Windows 10 1803 are affected.

Microsoft Exchange 2019 – Unauthenticated Email Download