:: Deepquest ::

>> Three Zero-Day Bugs Plague Kaseya Unitrends Backup Servers

USER: deepcore // 2021-07-29 // 0 CMT

>> [webapps] Oracle Fatwire 6.3 – Multiple Vulnerabilities

USER: deepcore // 2021-07-29 // 0 CMT

Oracle Fatwire 6.3 – Multiple Vulnerabilities

>> [webapps] CloverDX 5.9.0 – Cross-Site Request Forgery (CSRF) to Remote Code Execution (RCE)

USER: deepcore // 2021-07-29 // 0 CMT

CloverDX 5.9.0 – Cross-Site Request Forgery (CSRF) to Remote Code Execution (RCE)

>> [webapps] Care2x Integrated Hospital Info System 2.7 – 'Multiple' SQL Injection

USER: deepcore // 2021-07-29 // 0 CMT

Care2x Integrated Hospital Info System 2.7 – ‘Multiple’ SQL Injection

>> [webapps] IntelliChoice eFORCE Software Suite 2.5.9 – Username Enumeration

USER: deepcore // 2021-07-29 // 0 CMT

IntelliChoice eFORCE Software Suite 2.5.9 – Username Enumeration

>> [webapps] Longjing Technology BEMS API 1.21 – Remote Arbitrary File Download

USER: deepcore // 2021-07-29 // 0 CMT

Longjing Technology BEMS API 1.21 – Remote Arbitrary File Download

>> [webapps] Denver IP Camera SHO-110 – Unauthenticated Snapshot

USER: deepcore // 2021-07-29 // 0 CMT

Denver IP Camera SHO-110 – Unauthenticated Snapshot

>> Backdoor.Win32.WinShell.40 Code Execution

USER: deepcore // 2021-07-28 // 0 CMT

Backdoor.Win32.WinShell.40 malware suffers from a code execution vulnerability.

>> WordPress Social Warfare 3.5.2 Remote Code Execution

USER: deepcore // 2021-07-28 // 0 CMT

WordPress Social Warfare plugin version 3.5.2 remote code execution exploit. This fully automated exploit is a variation of the original discovery made by Luka Sikic and hash3liZer in May of…

>> PHP 7.3.15-3 PHP_SESSION_UPLOAD_PROGRESS Session Data Injection

USER: deepcore // 2021-07-28 // 0 CMT

PHP version 7.3.15-3 suffers from a PHP_SESSION_UPLOAD_PROGRESS session data injection vulnerability.