:: Deepquest ::

KnFTP Server version 1.0.0 LIST denial of service proof of concept exploit.

OpenEMR version 5.0.1.3 authenticated remote shell upload exploit.

COVID-19 Testing Management System version 1.0 suffers from a persistent cross site scripting vulnerability. This is a variant of the original discovery of cross site scripting in this version made by Rohit Burke in May of 2021.

Backdoor.Win32.Pazus.18 malware suffers from bypass and code execution vulnerabilities.

Accela Civic Platform version 21.1 suffers from cross site scripting and open redirection vulnerabilities.

Accela Civic Platform version 21.1 suffers from an insecure direct object reference vulnerability.

GLPI version 9.4.5 remote code execution exploit.

Backdoor.Win32.Zombam.gen malware suffers from an information leakage vulnerability.

Stock Management System version 1.0 suffers from a remote blind SQL injection vulnerability. This is a variant to the original discovery of SQL injection in this version discovered in August of 2020 by hyd3sec.

Small CRM version 3.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.