:: Deepquest ::

Netgear Genie version 2.4.64 suffers from an unquoted service path vulnerability.

Balbooa Joomla Forms Builder version 2.0.6 suffers from a remote SQL injection vulnerability.

OpenClinic GA version 5.194.18 suffers from a local privilege escalation vulnerability.

Online Event Booking and Reservation System version 1.0 suffers from a persistent cross site scripting vulnerability.

Engineers Online Portal version 1.0 suffers from a persistent cross site scripting vulnerability.

Engineers Online Portal version 1.0 suffers from multiple remote SQL injection vulnerabilities. Original discovery of SQL injection in this version is attributed to n11secur1ty in October of 2021.

GridPro Request Management for Windows Azure Pack versions 2.0.7905 and below suffer from a traversal vulnerability that can allow for arbitrary execution of Powershell scripts.

FreeSWITCH versions 1.10.6 and below suffer from a SIP digest leak vulnerability. An attacker can perform a SIP digest leak attack against FreeSWITCH and receive the challenge response of a gateway configured on the FreeSWITCH server. This is done by challenging FreeSWITCH’s SIP requests with the realm set to that of the gateway, thus forcing […]

phpMyAdmin version 4.8.1 remote code execution exploit.

FreeSWITCH versions 1.10.6 and below suffer from a SIP flooding denial of service vulnerability.