:: Deepquest ::

Splunk version 6.1.1 suffers from a Referer header cross site scripting vulnerability.

Rumble Mail Server version 0.51.3135 suffers from a stored cross site scripting vulnerability.

This Metasploit module is an implementation of fileless uac bypass using cmd.exe instead of powershell.exe (OJ msf module). This module will create the required registry entry in the current user’s hive, set the default value to whatever you pass via the EXEC_COMMAND parameter, and runs eventvwr.exe (hijacking the process being started to gain code execution).

My PHP Dating version 2.0 suffers from a remote SQL injection vulnerability.

Brave Browser suffers from an address bar spoofing vulnerability. iOS version 1.2.16 (16.09.30.10) and Android version 1.9.56 is affected.

DirectAdmin Control Panel version 1.50.1 suffers from a cross site scripting vulnerability.

http://namcham.go.th/dnm_file/news/16184_center.jpg notified by ZoRRoKiN

http://napralan.go.th/dnm_file/news/7503_center.jpg notified by ZoRRoKiN

http://nongmuangkai.go.th/dnm_file/news/16430_center.jpg notified by ZoRRoKiN

http://nongphaiphetchabun.go.th/dnm_file/news/2531_center.jpg notified by ZoRRoKiN