:: Deepquest ::

[EXPLOIT]

>> Backdoor.Win32.BNLite Buffer Overflow

USER: deepcore // 2021-11-23 // 0 CMT

Backdoor.Win32.BNLite malware suffers from a buffer overflow vulnerability.

[EXPLOIT]

>> Backdoor.Win32.BlueAdept.02.a Buffer Overflow

USER: deepcore // 2021-11-23 // 0 CMT

Backdoor.Win32.BlueAdept.02.a malware suffers from a buffer overflow vulnerability.

[EXPLOIT]

>> OX App Suite 7.10.5 Cross Site Scripting / Information Disclosure

USER: deepcore // 2021-11-23 // 0 CMT

OX App Suite versions 7.10.5 and below suffer from cross site scripting and information disclosure vulnerabilities.

[EXPLOIT]

>> Wipro Holmes Orchestrator 20.4.1 Report Disclosure

USER: deepcore // 2021-11-23 // 0 CMT

Wipro Holmes Orchestrator version 20.4.1 allows unauthenticated re-downloading of priorly exported reports in Excel.

[SECURITY]

>> [webapps] FLEX 1085 Web 1.6.0 – HTML Injection

USER: deepcore // 2021-11-23 // 0 CMT

FLEX 1085 Web 1.6.0 – HTML Injection

[SECURITY]

>> [webapps] Bus Pass Management System 1.0 – 'Search' SQL injection

USER: deepcore // 2021-11-23 // 0 CMT

Bus Pass Management System 1.0 – ‘Search’ SQL injection

[SECURITY]

>> [webapps] Webrun 3.6.0.42 – 'P_0' SQL Injection

USER: deepcore // 2021-11-23 // 0 CMT

Webrun 3.6.0.42 – ‘P_0’ SQL Injection

[SECURITY]

>> [local] Linux Kernel 5.1.x – 'PTRACE_TRACEME' pkexec Local Privilege Escalation (2)

USER: deepcore // 2021-11-23 // 0 CMT

Linux Kernel 5.1.x – ‘PTRACE_TRACEME’ pkexec Local Privilege Escalation (2)

[SECURITY]

>> [webapps] WordPress Plugin WP Guppy 1.1 – WP-JSON API Sensitive Information Disclosure

USER: deepcore // 2021-11-23 // 0 CMT

WordPress Plugin WP Guppy 1.1 – WP-JSON API Sensitive Information Disclosure

[SECURITY]

>> [remote] GNU gdbserver 9.2 – Remote Command Execution (RCE)

USER: deepcore // 2021-11-23 // 0 CMT

GNU gdbserver 9.2 – Remote Command Execution (RCE)

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this: