:: Deepquest ::

>> [remote] Microsoft Windows – 'SMBGhost' Remote Code Execution

USER: deepcore // 2020-06-02 // 0 CMT

Microsoft Windows – ‘SMBGhost’ Remote Code Execution

>> [webapps] QuickBox Pro 2.1.8 – Authenticated Remote Code Execution

USER: deepcore // 2020-06-01 // 0 CMT

QuickBox Pro 2.1.8 – Authenticated Remote Code Execution

>> [webapps] WordPress Plugin BBPress 2.5 – Unauthenticated Privilege Escalation

USER: deepcore // 2020-06-01 // 0 CMT

WordPress Plugin BBPress 2.5 – Unauthenticated Privilege Escalation

>> PanaceaSoft Shell Upload

USER: deepcore // 2020-05-30 // 0 CMT

Various PanaceaSoft products appear to suffer from a shell upload vulnerability.

>> WordPress Multi-Scheduler 1.0.0 Cross Site Request Forgery

USER: deepcore // 2020-05-30 // 0 CMT

WordPress Multi-Scheduler plugin version 1.0.0 suffers from a cross site request forgery vulnerability.

>> Crystal Shard http-protection 0.2.0 IP Spoofing Bypass

USER: deepcore // 2020-05-30 // 0 CMT

Crystal Shard http-protection version 0.2.0 suffers from an IP spoofing bypass vulnerability.

>> Apple Security Advisory 2020-05-26-2

USER: deepcore // 2020-05-30 // 0 CMT

Apple Security Advisory 2020-05-26-2 – iOS 12.4.7 addresses an out of bounds write vulnerability.

>> Apple Security Advisory 2020-05-26-1

USER: deepcore // 2020-05-30 // 0 CMT

Apple Security Advisory 2020-05-26-1 – iOS 13.5 and iPadOS 13.5 address bypass, code execution, cross site scripting, denial of service, double free, information leakage, integer overflow, out of bounds read,…

>> Apple Security Advisory 2020-05-26-6

USER: deepcore // 2020-05-30 // 0 CMT

Apple Security Advisory 2020-05-26-6 – watchOS 5.3.7 addresses a memory corruption vulnerability.

>> Apple Security Advisory 2020-05-26-7

USER: deepcore // 2020-05-30 // 0 CMT

Apple Security Advisory 2020-05-26-7 – Safari 13.1.1 is now available and addresses code execution and cross site scripting vulnerabilities.