exploit – Page 957 – :: Deepquest ::

>> Microsoft dnslint.exe DNS Tool Forced Drive-By Download

USER: deepcore // 2018-07-22 // 0 CMT

Microsoft’s dnslint.exe tool does not verify domain names when parsing DNS text-files using the “/ql” switch making it prone to forced drive-by downloads, providing an end user is tricked into…

>> Chrome SwiftShader OpenGL Texture Binding Reference Count Leak

USER: deepcore // 2018-07-21 // 0 CMT

Chrome suffers from a reference count leak in SwiftShader OpenGL texture bindings.

>> MyBB New Threads 1.1 Cross Site Scripting

USER: deepcore // 2018-07-21 // 0 CMT

MyBB New Threads plugin version 1.1 suffers from a cross site scripting vulnerability.

>> Chrome Swiftshader Blitting Floating-Point Precision Errors

USER: deepcore // 2018-07-21 // 0 CMT

Chrome suffers from floating-point precision errors in Swiftshader blitting.

>> WordPress All In One Favicon 4.6 Cross Site Scripting

USER: deepcore // 2018-07-21 // 0 CMT

WordPress All In One Favicon plugin version 4.6 suffers from a cross site scripting vulnerability.

>> CMS Made Simple 2.2.5 Authenticated Remote Command Execution

USER: deepcore // 2018-07-21 // 0 CMT

CMS Made Simple version 2.2.5 allows an authenticated administrator to upload a file and rename it to have a .php extension. The file can then be executed by opening the…

>> FTP2FTP 1.0 Arbitrary File Download

USER: deepcore // 2018-07-19 // 0 CMT

FTP2FTP version 1.0 suffers from an arbitrary file download vulnerability.

>> GhostMail Status Message HTML Injection

USER: deepcore // 2018-07-19 // 0 CMT

GhostMail suffers from an html injection vulnerability.

>> GhostMail Filename To Link Script Insertion

USER: deepcore // 2018-07-19 // 0 CMT

GhostMail suffers from a malicious script insertion vulnerability.

>> Open-AudIT Community 2.1.1 Cross Site Scripting

USER: deepcore // 2018-07-19 // 0 CMT

Open-AudIT Community version 2.1.1 suffers from a cross site scripting vulnerability.