:: Deepquest ::

Job Portal Script version 9.11 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

D-Link DIR-615 suffers from cross site scripting and open redirection vulnerabilities. Hardware version E3 with firmware version 5.10 is affected.

This Metasploit module exploits a stack-based buffer overflow vulnerability in the web interface of DiskBoss Enterprise v7.5.12 and v7.4.28, caused by improper bounds checking of the request path in HTTP GET requests sent to the built-in web server. This Metasploit module has been tested successfully on Windows XP SP3 and Windows 7 SP1.

http://www.thungchang.go.th notified by Nofawkx Al

http://hangdonghospital.go.th/google46b8ce833112b683.html notified by Iran Security Team

http://sikhiotown.go.th notified by Mr.XM404RS!

The vulnerability laboratory core research team discovered a security flaw that affects the official Huawei Flybox B660 …

Firejail suffers from a privilege escalation vulnerability.

Proof of concept .mov that demonstrates a DecodeAdpcmImaQT buffer overflow vulnerability in VideoLAN VLC Media Player version 2.2.1.

Microsoft Windows kernel win32k.sys NtSetWindowLongPtr privilege escalation exploit that leverages the vulnerability outlined in MS16-135.