:: Deepquest ::

>> Apache OFBiz SOAP Java Deserialization

USER: deepcore // 2021-04-07 // 0 CMT

This Metasploit module exploits a Java deserialization vulnerability in Apache OFBiz’s unauthenticated SOAP endpoint /webtools/control/SOAPService for versions prior to 17.12.06.

>> [webapps] Atlassian Jira Service Desk 4.9.1 – Unrestricted File Upload to XSS

USER: deepcore // 2021-04-07 // 0 CMT

Atlassian Jira Service Desk 4.9.1 – Unrestricted File Upload to XSS

>> [webapps] Composr CMS 10.0.36 – Cross Site Scripting

USER: deepcore // 2021-04-07 // 0 CMT

Composr CMS 10.0.36 – Cross Site Scripting

>> Rockstar Service Insecure File Permissions

USER: deepcore // 2021-04-06 // 0 CMT

RockstarService.exe suffers from an insecure file permissions vulnerability.

>> Simple Food Website 1.0 SQL Injection

USER: deepcore // 2021-04-06 // 0 CMT

Simple Food Website version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

>> Simple Traffic Offense System 1.0 Cross Site Scripting

USER: deepcore // 2021-04-06 // 0 CMT

Simple Traffic Offense System version 1.0 suffers from a persistent cross site scripting vulnerability.

>> Basic Shopping Cart 1.0 SQL Injection

USER: deepcore // 2021-04-06 // 0 CMT

Basic Shopping Cart version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

>> Trojan.Win32.Sharer.h Code Execution

USER: deepcore // 2021-04-06 // 0 CMT

Trojan.Win32.Sharer.h malware suffers from a code execution vulnerability.

>> OpenEMR 4.1.0 SQL Injection

USER: deepcore // 2021-04-06 // 0 CMT

OpenEMR version 4.1.0 remote SQL Injection exploit.

>> Trojan.Win32.Sharer.h Man-In-The-Middle

USER: deepcore // 2021-04-06 // 0 CMT

Trojan.Win32.Sharer.h malware suffers from a man-in-the-middle vulnerability.