:: Deepquest ::

[SECURITY]

>> [webapps] Tailor MS 1.0 – Reflected Cross-Site Scripting

USER: deepcore // 2020-09-15 // 0 CMT

Tailor MS 1.0 – Reflected Cross-Site Scripting

[SECURITY]

>> [webapps] ThinkAdmin 6 – Arbitrarily File Read

USER: deepcore // 2020-09-15 // 0 CMT

ThinkAdmin 6 – Arbitrarily File Read

[SECURITY]

>> [local] Pearson Vue VTS 2.3.1911 Installer – 'VUEApplicationWrapper' Unquoted Service Path

USER: deepcore // 2020-09-14 // 0 CMT

Pearson Vue VTS 2.3.1911 Installer – ‘VUEApplicationWrapper’ Unquoted Service Path

[SECURITY]

>> [local] Rapid7 Nexpose Installer 6.6.39 – 'nexposeengine' Unquoted Service Path

USER: deepcore // 2020-09-14 // 0 CMT

Rapid7 Nexpose Installer 6.6.39 – ‘nexposeengine’ Unquoted Service Path

[SECURITY]

>> [webapps] RAD SecFlow-1v SF_0290_2.3.01.26 – Cross-Site Request Forgery (Reboot)

USER: deepcore // 2020-09-14 // 0 CMT

RAD SecFlow-1v SF_0290_2.3.01.26 – Cross-Site Request Forgery (Reboot)

[SECURITY]

>> [webapps] RAD SecFlow-1v SF_0290_2.3.01.26 – Persistent Cross-Site Scripting

USER: deepcore // 2020-09-14 // 0 CMT

RAD SecFlow-1v SF_0290_2.3.01.26 – Persistent Cross-Site Scripting

[EXPLOIT]

>> CuteNews 2.1.2 Remote Code Execution

USER: deepcore // 2020-09-12 // 0 CMT

CuteNews version 2.1.2 remote code execution exploit.

[EXPLOIT]

>> Tiandy IPC / NVR 9.12.7 Credential Disclosure

USER: deepcore // 2020-09-12 // 0 CMT

Tiandy IPC and NVR version 9.12.7 suffer from a credential disclosure vulnerability.

[EXPLOIT]

>> ZTE F602W CAPTCHA Bypass

USER: deepcore // 2020-09-12 // 0 CMT

The ZTE F602W router suffers from a CAPTCHA bypass vulnerability.

[EXPLOIT]

>> Mobile Shop System 1.0 SQL Injection

USER: deepcore // 2020-09-12 // 0 CMT

Mobile Shop System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this: