:: Deepquest ::

[SECURITY]

>> [webapps] qdPM 9.1 – Remote Code Execution (RCE) (Authenticated) (v2)

USER: deepcore // 2022-05-25 // 0 CMT

qdPM 9.1 – Remote Code Execution (RCE) (Authenticated) (v2)

[EXPLOIT]

>> OpenCart Newsletter 3.0.2.0 SQL Injection

USER: deepcore // 2022-05-24 // 0 CMT

OpenCart Newsletter module version 3.0.2.0 suffers from a remote blind SQL injection vulnerability.

[EXPLOIT]

>> Blockchain AltExchanger 1.2.1 SQL Injection

USER: deepcore // 2022-05-24 // 0 CMT

Blockchain AltExchanger version 1.2.1 suffers from multiple remote SQL injection vulnerabilities.

[EXPLOIT]

>> Blockchain FiatExchanger 2.2.1 SQL Injection

USER: deepcore // 2022-05-24 // 0 CMT

Blockchain FiatExchanger version 2.2.1 suffers from a remote blind SQL injection vulnerability.

[EXPLOIT]

>> m1k1o's Blog 1.3 Remote Code Execution

USER: deepcore // 2022-05-24 // 0 CMT

m1k1o’s Blog versions 1.3 and below suffer from an authenticated remote code execution vulnerability.

[EXPLOIT]

>> iTop Remote Command Execution

USER: deepcore // 2022-05-24 // 0 CMT

iTop versions prior to 2.7.5 authenticated remote command execution exploit.

[EXPLOIT]

>> iTop Remote Command Execution

USER: deepcore // 2022-05-23 // 0 CMT

iTop versions prior to 2.7.5 authenticated remote command execution exploit.

[SECURITY]

>> [webapps] m1k1o's Blog v.10 – Remote Code Execution (RCE) (Authenticated)

USER: deepcore // 2022-05-23 // 0 CMT

m1k1o’s Blog v.10 – Remote Code Execution (RCE) (Authenticated)

[SECURITY]

>> [webapps] OpenCart v3.x Newsletter Module – Blind SQLi

USER: deepcore // 2022-05-23 // 0 CMT

OpenCart v3.x Newsletter Module – Blind SQLi

[EXPLOIT]

>> Linux USB Use-After-Free

USER: deepcore // 2022-05-21 // 0 CMT

Linux usbnet code tells minidrivers to unbind while netdev is still up, causing use-after-free conditions.

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this: