:: Deepquest ::

This is a proof of concept exploit for the Apple macOS remote events remote memory corruption vulnerability. It serves as a toolkit to help debug and trigger crashes.

Mobile Mouse version 3.6.0.4 suffers from a remote code execution vulnerability.

Online Market Place Site version 1.0 suffers from an unauthenticated blind SQL injection vulnerability allowing remote attackers to dump the SQL database via time-based SQL injection.

Online Market Place Site version 1.0 suffers from a persistent cross site scripting vulnerability.

This Metasploit module exploits an authenticated command injection vulnerability affecting Cisco ASA-X with FirePOWER Services. This exploit is executed through the ASA’s ASDM web server and lands in the FirePower Services SFR module’s Linux virtual machine as the root user. Access to the virtual machine allows the attacker to pivot to the inside network, and […]

WordPress Netroics Blog Posts Grid plugin version 1.0 suffers from a persistent cross site scripting vulnerability.

Apple Security Advisory 2022-08-31-1 – iOS 12.5.6 addresses code execution and out of bounds write vulnerabilities.

Doctor’s Appointment System version 1.0 suffers from a cross site scripting vulnerability in register.php. Original discovery of cross site scripting in this version is attributed to Soham Bakore in February of 2021.

Doctor’s Appointment System version 1.0 suffers from a remote SQL injection vulnerability. Original discovery of SQL injection in this version is attributed to Soham Bakore and Nakul Ratti in February of 2021.

WordPress Plugin Netroics Blog Posts Grid 1.0 – Stored Cross-Site Scripting (XSS)