0day – Page 563 – :: Deepquest ::

>> [webapps] FS Care Clone – 'sitterService' SQL Injection

USER: deepcore // 2017-10-24 // 0 CMT

FS Care Clone – ‘sitterService’ SQL Injection

>> [webapps] FS Thumbtack Clone – 'ser' SQL Injection

USER: deepcore // 2017-10-24 // 0 CMT

FS Thumbtack Clone – ‘ser’ SQL Injection

>> [webapps] Mura CMS < 6.2 – Server-Side Request Forgery / XML External Entity Injection

USER: deepcore // 2017-10-24 // 0 CMT

Mura CMS < 6.2 – Server-Side Request Forgery / XML External Entity Injection

>> [webapps] FS Realtor Clone – 'id' SQL Injection

USER: deepcore // 2017-10-24 // 0 CMT

FS Realtor Clone – ‘id’ SQL Injection

>> [webapps] Kaltura < 13.1.0 – Remote Code Execution

USER: deepcore // 2017-10-23 // 0 CMT

Kaltura < 13.1.0 – Remote Code Execution

>> [remote] Unitrends UEB 9 – bpserverd Authentication Bypass Remote Command Execution (Metasploit)

USER: deepcore // 2017-10-23 // 0 CMT

Unitrends UEB 9 – bpserverd Authentication Bypass Remote Command Execution (Metasploit)

>> [remote] Unitrends UEB 9 – http api/storage Remote Root (Metasploit)

USER: deepcore // 2017-10-23 // 0 CMT

Unitrends UEB 9 – http api/storage Remote Root (Metasploit)

>> [remote] Polycom – Command Shell Authorization Bypass (Metasploit)

USER: deepcore // 2017-10-23 // 0 CMT

Polycom – Command Shell Authorization Bypass (Metasploit)

>> [webapps] FS Food Delivery Script – 'keywords' SQL Injection

USER: deepcore // 2017-10-23 // 0 CMT

FS Food Delivery Script – ‘keywords’ SQL Injection

>> [webapps] FS Car Rental Script – 'pickup_location' SQL Injection

USER: deepcore // 2017-10-23 // 0 CMT

FS Car Rental Script – ‘pickup_location’ SQL Injection