:: Deepquest ::

>> [webapps] Web Based Quiz System 1.0 – 'MCQ options' Persistent/Stored Cross-Site Scripting

USER: deepcore // 2021-03-02 // 0 CMT

Web Based Quiz System 1.0 – ‘MCQ options’ Persistent/Stored Cross-Site Scripting

>> [webapps] VMware vCenter Server 7.0 – Unauthenticated File Upload

USER: deepcore // 2021-03-01 // 0 CMT

VMware vCenter Server 7.0 – Unauthenticated File Upload

>> [webapps] FortiLogger 4.4.2.2 – Unauthenticated Arbitrary File Upload (Metasploit)

USER: deepcore // 2021-03-01 // 0 CMT

FortiLogger 4.4.2.2 – Unauthenticated Arbitrary File Upload (Metasploit)

>> [remote] WiFi Mouse 1.7.8.5 – Remote Code Execution

USER: deepcore // 2021-03-01 // 0 CMT

WiFi Mouse 1.7.8.5 – Remote Code Execution

>> WordPress Under Construction, Coming Soon, And Maintenance Mode 1.1.1 SSRF / XSS

USER: deepcore // 2021-02-27 // 0 CMT

WordPress Under Construction, Coming Soon, and Maintenance Mode plugin version 1.1.1 suffers from cross site scripting and server-side request forgery vulnerabilities.

>> Simple Employee Records System 1.0 Shell Upload

USER: deepcore // 2021-02-27 // 0 CMT

Simple Employee Records System version 1.0 suffers from an unauthenticated remote shell upload vulnerability.

>> Yeastar TG400 GSM Gateway 91.3.0.3 Path Traversal

USER: deepcore // 2021-02-27 // 0 CMT

Yeastar TG400 GSM Gateway version 91.3.0.3 suffers from a path traversal vulnerability.

>> Nagios XI 5.7.5 Remote Code Execution

USER: deepcore // 2021-02-27 // 0 CMT

Nagios XI version 5.7.5 suffers from a cross site scripting and multiple remote code execution vulnerabilities.

>> LightCMS 1.3.4 Cross Site Scripting

USER: deepcore // 2021-02-27 // 0 CMT

LightCMS version 1.3.4 suffers from a persistent cross site scripting vulnerability.

>> Squid 4.14 / 5.0.5 Code Execution / Double Free

USER: deepcore // 2021-02-27 // 0 CMT

Squid versions 4.14 and 5.0.5 suffer from a double free vulnerability that can result in code execution.