:: Deepquest ::

Streamo Online Radio and TV Streaming CMS suffers from a remote SQL injection vulnerability.

Microsoft Process Kill Utility version 6.3.9600.17298 suffers from a buffer overflow vulnerability.

Microsoft WinDbg LogViewer suffers from a buffer overflow vulnerability.

CyberPower Systems PowerPanel version 3.1.2 suffers from an unauthenticated XML External Entity (XXE) vulnerability using the DTD parameter entities technique resulting in disclosure and retrieval of arbitrary data on the affected node via out-of-band (OOB) attack. The vulnerability is triggered when input passed to the xmlservice servlet using the ppbe.xml script is not sanitized while […]

This Metasploit module exploits a remote code execution vulnerability in the inline request processor of the Ruby on Rails ActionPack component. This vulnerability allows an attacker to process ERB to the inline JSON processor, which is then rendered, permitting full RCE within the runtime, without logging an error condition.

This Metasploit module exploits the vulnerability in mrxdav.sys described by MS16-016. The module will spawn a process on the target system and elevate it’s privileges to NT AUTHORITYSYSTEM before executing the specified payload within the context of the elevated process.

http://prcdd.cdd.go.th/if.htm notified by RxR

http://pmqa.cdd.go.th/if.htm notified by RxR

http://gn.cdd.go.th/if.htm notified by RxR

http://audit.cdd.go.th/if.htm notified by RxR