0day – Page 411 – :: Deepquest ::

>> [webapps] Webiness Inventory 2.9 – Arbitrary File Upload

USER: deepcore // 2018-10-30 // 0 CMT

Webiness Inventory 2.9 – Arbitrary File Upload

>> [webapps] University Application System 1.0 – SQL Injection / Cross-Site Request Forgery (Add Admin)

USER: deepcore // 2018-10-30 // 0 CMT

University Application System 1.0 – SQL Injection / Cross-Site Request Forgery (Add Admin)

>> [webapps] Library Management System 1.0 – 'frmListBooks' SQL Injection

USER: deepcore // 2018-10-29 // 0 CMT

Library Management System 1.0 – ‘frmListBooks’ SQL Injection

>> [webapps] Grapixel New Media 2 – 'pageref' SQL Injection

USER: deepcore // 2018-10-29 // 0 CMT

Grapixel New Media 2 – ‘pageref’ SQL Injection

>> [webapps] Open Faculty Evaluation System 5.6 – 'batch_name' SQL Injection

USER: deepcore // 2018-10-29 // 0 CMT

Open Faculty Evaluation System 5.6 – ‘batch_name’ SQL Injection

>> [local] Modbus Slave PLC 7 – '.msw' Buffer Overflow (PoC)

USER: deepcore // 2018-10-29 // 0 CMT

Modbus Slave PLC 7 – ‘.msw’ Buffer Overflow (PoC)

>> [remote] Paramiko 2.4.1 – Authentication Bypass

USER: deepcore // 2018-10-29 // 0 CMT

Paramiko 2.4.1 – Authentication Bypass

>> [dos] AlienIP 2.41 – Denial of Service (PoC)

USER: deepcore // 2018-10-29 // 0 CMT

AlienIP 2.41 – Denial of Service (PoC)

>> [dos] Local Server 1.0.9 – Denial of Service (PoC)

USER: deepcore // 2018-10-29 // 0 CMT

Local Server 1.0.9 – Denial of Service (PoC)

>> [local] School Equipment Monitoring System 1.0 – 'login' SQL Injection

USER: deepcore // 2018-10-29 // 0 CMT

School Equipment Monitoring System 1.0 – ‘login’ SQL Injection