:: Deepquest ::

>> Chrome HRTFDatabaseLoader::WaitForLoaderThreadCompletion Data Race

USER: deepcore // 2021-09-23 // 0 CMT

Chrome suffers from a HRTFDatabaseLoader::WaitForLoaderThreadCompletion data race condition.

>> [webapps] Police Crime Record Management Project 1.0 – Time Based SQLi

USER: deepcore // 2021-09-23 // 0 CMT

Police Crime Record Management Project 1.0 – Time Based SQLi

>> [webapps] WordPress Plugin Fitness Calculators 1.9.5 – Cross-Site Request Forgery (CSRF)

USER: deepcore // 2021-09-23 // 0 CMT

WordPress Plugin Fitness Calculators 1.9.5 – Cross-Site Request Forgery (CSRF)

>> [webapps] WordPress Plugin Advanced Order Export For WooCommerce 3.1.7 – Reflected Cross-Site Scripting (XSS)

USER: deepcore // 2021-09-23 // 0 CMT

WordPress Plugin Advanced Order Export For WooCommerce 3.1.7 – Reflected Cross-Site Scripting (XSS)

>> [webapps] Backdrop CMS 1.20.0 – 'Multiple' Cross-Site Request Forgery (CSRF)

USER: deepcore // 2021-09-23 // 0 CMT

Backdrop CMS 1.20.0 – ‘Multiple’ Cross-Site Request Forgery (CSRF)

>> [webapps] WordPress Plugin 3DPrint Lite 1.9.1.4 – Arbitrary File Upload

USER: deepcore // 2021-09-23 // 0 CMT

WordPress Plugin 3DPrint Lite 1.9.1.4 – Arbitrary File Upload

>> [dos] Redragon Gaming Mouse – 'REDRAGON_MOUSE.sys' Denial-Of-Service (PoC)

USER: deepcore // 2021-09-23 // 0 CMT

Redragon Gaming Mouse – ‘REDRAGON_MOUSE.sys’ Denial-Of-Service (PoC)

>> [webapps] Gurock Testrail 7.2.0.3014 – 'files.md5' Improper Access Control

USER: deepcore // 2021-09-23 // 0 CMT

Gurock Testrail 7.2.0.3014 – ‘files.md5’ Improper Access Control

>> [webapps] Budget and Expense Tracker System 1.0 – Arbitrary File Upload

USER: deepcore // 2021-09-23 // 0 CMT

Budget and Expense Tracker System 1.0 – Arbitrary File Upload

>> Apple Security Advisory 2021-09-20-1

USER: deepcore // 2021-09-22 // 0 CMT

Apple Security Advisory 2021-09-20-1 – iOS 15 and iPadOS 15 addresses code execution, denial of service, out of bounds read, and spoofing vulnerabilities.