:: Deepquest ::

Courier Deprixa version 2.5 has been reported as having a default backdoor account.

Enlightenment version 0.25.3 suffers from a local privilege escalation vulnerability.

Enlightenment version 0.25.3 suffers from a local privilege escalation vulnerability.

Stock Management System 2022 version 1.0 from Erick Cesar suffers from a remote SQL injection vulnerability.

WordPress Yith WooCommerce Gift Cards Premium plugin versions 3.19.0 and below suffer from a remote shell upload vulnerability.

This Metasploit module exploits an unauthenticated command injection vulnerability in the yrange parameter in OpenTSDB through 2.4.0 (CVE-2020-35476) in order to achieve unauthenticated remote code execution as the root user. The module first attempts to obtain the OpenTSDB version via the api. If the version is 2.4.0 or lower, the module performs additional checks to […]

This Metasploit module exploits an unauthenticated command injection vulnerability in the yrange parameter in OpenTSDB through 2.4.0 (CVE-2020-35476) in order to achieve unauthenticated remote code execution as the root user. The module first attempts to obtain the OpenTSDB version via the api. If the version is 2.4.0 or lower, the module performs additional checks to […]

Senayan Library Management System version 9.2.2 suffers from a cross site scripting vulnerability.

Senayan Library Management System version 9.2.2 suffers from a remote SQL injection vulnerability.

4images version 1.9 suffers from a remote command execution vulnerability.