:: Deepquest ::

>> [local] Realtek Wireless LAN Utility 700.1631 – 'Realtek11nSU' Unquoted Service Path

USER: deepcore // 2021-03-15 // 0 CMT

Realtek Wireless LAN Utility 700.1631 – ‘Realtek11nSU’ Unquoted Service Path

>> [webapps] rConfig 3.9.6 – 'path' Local File Inclusion (Authenticated)

USER: deepcore // 2021-03-15 // 0 CMT

rConfig 3.9.6 – ‘path’ Local File Inclusion (Authenticated)

>> [local] QNAP QVR Client 5.0.0.13230 – 'QVRService' Unquoted Service Path

USER: deepcore // 2021-03-15 // 0 CMT

QNAP QVR Client 5.0.0.13230 – ‘QVRService’ Unquoted Service Path

>> [webapps] MagpieRSS 0.72 – 'url' Command Injection and Server Side Request Forgery

USER: deepcore // 2021-03-15 // 0 CMT

MagpieRSS 0.72 – ‘url’ Command Injection and Server Side Request Forgery

>> [webapps] Zenario CMS 8.8.53370 – 'id' Blind SQL Injection

USER: deepcore // 2021-03-15 // 0 CMT

Zenario CMS 8.8.53370 – ‘id’ Blind SQL Injection

>> Vembu BDR 4.2.0.1 U1 Unquoted Service Path

USER: deepcore // 2021-03-13 // 0 CMT

Vembu BDR version 4.2.0.1 U1 suffers from multiple unquoted service path vulnerabilities.

>> D-Link DIR-3060 1.11b04 Command Injection

USER: deepcore // 2021-03-13 // 0 CMT

D-Link DIR-3060 versions 1.11b04 and below suffer from an authenticated command injection vulnerability.

>> QCubed 3.1.1 PHP Object Injection

USER: deepcore // 2021-03-13 // 0 CMT

QCubed versions 3.1.1 and below suffer from a PHP object injection vulnerability.

>> QCubed 3.1.1 SQL Injection

USER: deepcore // 2021-03-13 // 0 CMT

QCubed versions 3.1.1 and below suffer from a remote SQL injection vulnerability.

>> Monitoring System (Dashboard) 1.0 Shell Upload

USER: deepcore // 2021-03-13 // 0 CMT

Monitoring System (Dashboard) version 1.0 suffers from multiple remote code execution vulnerabilities that can be leveraged by malicious shells being uploaded.