:: Deepquest :: This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Month: December 2021

Security

[webapps] Arunna 1.0.0 – 'Multiple' Cross-Site Request Forgery (CSRF)

Arunna 1.0.0 – ‘Multiple’ Cross-Site Request...

deepcoreDec 16, 2021

Security

[webapps] Croogo 3.0.2 – Unrestricted File Upload

Croogo 3.0.2 – Unrestricted File Upload

deepcoreDec 16, 2021

Security

[webapps] Croogo 3.0.2 – 'Multiple' Stored Cross-Site Scripting (XSS)

Croogo 3.0.2 – ‘Multiple’ Stored Cross-Site...

deepcoreDec 16, 2021

Security

[webapps] Cibele Thinfinity VirtualUI 2.5.41.0 – User Enumeration

Cibele Thinfinity VirtualUI 2.5.41.0 – User...

deepcoreDec 16, 2021

exploit

Apache Log4j2 2.14.1 Information Disclosure

Apache Log4j2 versions 2.14.1 and below...

deepcoreDec 15, 2021

exploit

Booked Scheduler 2.7.5 Shell Upload

Booked Scheduler version 2.75 authenticated remote...

deepcoreDec 15, 2021

exploit

AbanteCart Arbitrary File Upload / Cross Site Scripting

AbanteCart e-commerce platform versions prior to...

deepcoreDec 15, 2021

exploit

Zucchetti Axess CLOKI Access Control 1.64 Cross Site Request Forgery

Zucchetti Axess CLOKI Access Control version...

deepcoreDec 15, 2021

exploit

Ticket Booking 1.0 SQL Injection

Ticket Booking version 1.0 suffers from...

deepcoreDec 15, 2021

exploit

Apache Log4j2 2.14.1 Remote Code Execution

Apache Log4j2 versions 2.0-beta-9 and 2.14.1...

deepcoreDec 15, 2021