6 - 2016 - :: Deepquest ::

>> Zed Attack Proxy 2.5.0 Mac OS X Release

USER: deepcore // 2016-06-05 // 0 CMT

The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications. It is designed to be used by people with a…

>> Microsoft Windows Forced Firewall Bypass

USER: deepcore // 2016-06-04 // 0 CMT

This is a local proof of concept that simulates a keystroke to allow access when a firewall dialog comes up.

>> Babylon Translator Cross Site Scripting

USER: deepcore // 2016-06-04 // 0 CMT

Babylon Translator suffers from a cross site scripting vulnerability.

>> rConfig 3.1.1 Local File Inclusion

USER: deepcore // 2016-06-04 // 0 CMT

rConfig versions 3.1.1 and below suffer from a local file inclusion vulnerability.

>> Liferay 6.2.3 CE GA4 OpenID XXE Injection

USER: deepcore // 2016-06-04 // 0 CMT

Liferay supports OpenID login which was found to make use of a version of openid4java that is vulnerable to XML External Entity (XXE) attacks. Liferay versions 6.2.3 CE GA4 and…

>> Nagios XI 5.2.7 Code Execution / SQL Injection / Privilege Escalation

USER: deepcore // 2016-06-04 // 0 CMT

Nagios XI versions 5.2.7 and below suffer from command execution, privilege escalation, server-side request forgery, and remote SQL injection vulnerabilities.

>> http://khamkhaen.go.th/xxx.htm

USER: deepcore // 2016-06-03 // 0 CMT

http://khamkhaen.go.th/xxx.htm notified by 4Ri3 60ndr0n9

>> http://nmwk.go.th/xxx.htm

USER: deepcore // 2016-06-03 // 0 CMT

http://nmwk.go.th/xxx.htm notified by 4Ri3 60ndr0n9

>> http://bayaolocal.go.th/xxx.htm

USER: deepcore // 2016-06-03 // 0 CMT

http://bayaolocal.go.th/xxx.htm notified by 4Ri3 60ndr0n9

>> http://kkpfc.go.th/xxx.htm

USER: deepcore // 2016-06-03 // 0 CMT

http://kkpfc.go.th/xxx.htm notified by 4Ri3 60ndr0n9