:: Deepquest :: This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Month: July 2016

Security

[papers] – Exploiting Apache James Server 2.3.2

Exploiting Apache James Server 2.3.2

deepcoreJul 19, 2016

Security

[webapps] – NewsP Free News Script 1.4.7 – User Credentials Disclosure

NewsP Free News Script 1.4.7 –...

deepcoreJul 19, 2016

Security

[webapps] – newsp.eu PHP Calendar Script 1.0 – User Credentials Disclosure

newsp.eu PHP Calendar Script 1.0 –...

deepcoreJul 19, 2016

Security

[remote] – Axis Communications MPQT/PACS 5.20.x – Server Side Include (SSI) Daemon Remote Format String Exploit

Axis Communications MPQT/PACS 5.20.x – Server...

deepcoreJul 19, 2016

Security

[WebApps] – vBulletin 5.x/4.x – Persistent XSS in AdminCP/ApiLog via xmlrpc API (Post-Auth)

vBulletin 5.x/4.x – Persistent XSS in...

deepcoreJul 18, 2016

Security

[Local] – Internet Explorer 11 (on Windows 10) – VBScript Memory Corruption Proof-of-Concept Exploit (MS16-051)

Internet Explorer 11 (on Windows 10)...

deepcoreJul 18, 2016

Security

[Remote] – DropBearSSHD <= 2015.71 – Command Injection

DropBearSSHD <= 2015.71 – Command Injection

deepcoreJul 18, 2016

Security

[WebApps] – vBulletin 4.x – SQLi in breadcrumbs via xmlrpc API (Post-Auth)

vBulletin 4.x – SQLi in breadcrumbs...

deepcoreJul 18, 2016

Security

[remote] – OpenSSHD <= 7.2p2 – User Enumeration

OpenSSHD <= 7.2p2 – User Enumeration

deepcoreJul 18, 2016

defacement

http://provisgis.ntwo.moph.go.th/hunter.html

http://provisgis.ntwo.moph.go.th/hunter.html notified by HUNT3RXM

deepcoreJul 17, 2016