:: Deepquest ::

>> Python jsonpickle 2.0.0 Remote Code Execution

USER: deepcore // 2021-02-25 // 0 CMT

Python jsonpickle version 2.0.0 suffers from a remote code execution vulnerability.

>> LayerBB 1.1.4 SQL Injection

USER: deepcore // 2021-02-25 // 0 CMT

LayerBB version 1.1.4 suffers from a remote SQL injection vulnerability.

>> Backdoor.Win32.Delf.adag Hardcoded Credentials / Traversal

USER: deepcore // 2021-02-25 // 0 CMT

Backdoor.Win32.Delf.adag malware suffers from hardcoded credential and traversal vulnerabilities.

>> Unified Remote 3.9.0.2463 Remote Code Execution

USER: deepcore // 2021-02-25 // 0 CMT

Unified Remote version 3.9.0.2463 suffers from a remote code execution vulnerability.

>> [remote] ASUS Remote Link 1.1.2.13 – Remote Code Execution

USER: deepcore // 2021-02-25 // 0 CMT

ASUS Remote Link 1.1.2.13 – Remote Code Execution

>> eChat 1.0 SQL Injection

USER: deepcore // 2021-02-24 // 0 CMT

eChat version 1.0 suffers from a remote SQL injection vulnerability.

>> Monica 2.19.1 Cross Site Scripting

USER: deepcore // 2021-02-24 // 0 CMT

Monica version 2.19.1 suffers from a cross site scripting vulnerability.

>> HFS (HTTP File Server) 2.3.x Remote Code Execution

USER: deepcore // 2021-02-24 // 0 CMT

HFS (HTTP File Server) version 2.3.x remote code execution exploit.

>> Batflat CMS 1.3.6 Cross Site Scripting

USER: deepcore // 2021-02-24 // 0 CMT

Batflat CMS version 1.3.6 suffers from multiple persistent cross site scripting vulnerabilities.

>> Apache Flink JAR Upload Java Code Execution

USER: deepcore // 2021-02-24 // 0 CMT

This Metasploit module uses job functionality in the Apache Flink dashboard web interface to upload and execute a JAR file, leading to remote execution of arbitrary Java code as the…