:: Deepquest ::

eXtplorer version 2.1.14 suffers from authentication bypass and remote code execution vulnerabilities.

Google Chrome version 109.0.5414.74 on Ubuntu attempts to load libnssckbi.so from a user-writable location and if missing, a replacement piece of malware can be used by an attacker to achieve code execution. Although privilege escalation is not likely as an attacker would already need access to the user’s privilege level to place the malware, it […]

FlatCore CMS version 2.1.1 suffers from a persistent cross site scripting vulnerability.

Clansphere CMS version 2011.4 suffers from a persistent cross site scripting vulnerability.

Zoneminder versions prior to 1.37.24 suffers from log injection, persistent cross site scripting, and cross site request forgery bypass vulnerabilities.

WiFi Mouse version 1.8.3.2 suffers from a remote code execution vulnerability.

Grafana versions 6.2.4 and below suffer from an html injection vulnerability.

Webgrind version 1.1 suffers from remote code execution and cross site scripting vulnerabilities.

Scdbg version 1.0 suffers from a buffer overflow vulnerability that can cause a denial of service condition.

Hex Workshop version 6.7 is vulnerable to denial of service via command line file arguments and control of the Structured Exception Handler (SEH) records.