deepcore - :: Deepquest ::

>> Backdoor.Win32.Delf.zn Insecure Credential Storage

USER: deepcore // 2022-04-20 // 0 CMT

Backdoor.Win32.Delf.zn malware suffers from an insecure credential storage vulnerability.

>> BlueZ Key Theft / bluetoothd Double-Free

USER: deepcore // 2022-04-20 // 0 CMT

BlueZ suffers from a vulnerability where a malicious USB device can steal Bluetooth link keys over HCI using a fake BD_ADDR. It was also discovered that bluetoothd suffers from a…

>> BlueZ Key Theft / bluetoothd Double-Free

USER: deepcore // 2022-04-19 // 0 CMT

BlueZ suffers from a vulnerability where a malicious USB device can steal Bluetooth link keys over HCI using a fake BD_ADDR. It was also discovered that bluetoothd suffers from a…

>> [remote] Verizon 4G LTE Network Extender – Weak Credentials Algorithm

USER: deepcore // 2022-04-19 // 0 CMT

Verizon 4G LTE Network Extender – Weak Credentials Algorithm

>> [webapps] REDCap 11.3.9 – Stored Cross Site Scripting

USER: deepcore // 2022-04-19 // 0 CMT

REDCap 11.3.9 – Stored Cross Site Scripting

>> [webapps] WordPress Plugin Popup Maker 1.16.5 – Stored Cross-Site Scripting (Authenticated)

USER: deepcore // 2022-04-19 // 0 CMT

WordPress Plugin Popup Maker 1.16.5 – Stored Cross-Site Scripting (Authenticated)

>> [remote] Delta Controls enteliTOUCH 3.40.3935 – Cross-Site Scripting (XSS)

USER: deepcore // 2022-04-19 // 0 CMT

Delta Controls enteliTOUCH 3.40.3935 – Cross-Site Scripting (XSS)

>> [remote] Delta Controls enteliTOUCH 3.40.3935 – Cross-Site Request Forgery (CSRF)

USER: deepcore // 2022-04-19 // 0 CMT

Delta Controls enteliTOUCH 3.40.3935 – Cross-Site Request Forgery (CSRF)

>> [webapps] PKP Open Journals System 3.3 – Cross-Site Scripting (XSS)

USER: deepcore // 2022-04-19 // 0 CMT

PKP Open Journals System 3.3 – Cross-Site Scripting (XSS)

>> [remote] Delta Controls enteliTOUCH 3.40.3935 – Cookie User Password Disclosure

USER: deepcore // 2022-04-19 // 0 CMT

Delta Controls enteliTOUCH 3.40.3935 – Cookie User Password Disclosure