2017 February

http://www.nongsuang.go.th/dnm_file/news/13305_center.jpg

Posted by deepcore under defacement (No Respond)

http://www.nongsuang.go.th/dnm_file/news/13305_center.jpg notified by ZoRRoKiN

Tags: defacement

Geutebruck testaction.cgi Remote Command Execution

Posted by deepcore under exploit (No Respond)

This Metasploit module exploits a an arbitrary command execution vulnerability. The vulnerability exists in the /uapi-cgi/viewer/testaction.cgi page and allows an anonymous user to execute arbitrary commands with root privileges. Firmware <= 1.11.0.12 are concerned. Tested on 5.02024 G-Cam/EFD-2250 running 1.11.0.12 firmware.

JBoss 4.0.2 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

JBoss version 4.0.2 suffers from a cross site scripting vulnerability in the jmx-console HtmlAdaptor DatabasePersistencePlugin parameter.

Xshell5 5.0 Build 1124 DLL Hijacking

Posted by deepcore under exploit (No Respond)

Xshell5 version 5.0 build 1124 suffers from a dll hijacking vulnerability.

Joomla WMT Content Timeline 1.0 SQL Injection

Posted by deepcore under exploit (No Respond)

Joomla WMT Content Timeline component version 1.0 suffers from a remote SQL injection vulnerability.

Joomla Groovy Gallery 1.0.0 SQL Injection

Posted by deepcore under exploit (No Respond)

Joomla Groovy Gallery component version 1.0.0 suffers from a remote SQL injection vulnerability.

Joomla Spider Calendar Lite 3.2.16 SQL Injection

Posted by deepcore under exploit (No Respond)

Joomla Spider Calendar Lite component version 3.2.16 suffers from a remote SQL injection vulnerability.

Joomla Team Display 1.2.1 SQL Injection

Posted by deepcore under exploit (No Respond)

Joomla Team Display component version 1.2.1 suffers from a remote SQL injection vulnerability.

WordPress Corner Ad 1.0.7 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

WordPress Corner Ad plugin version 1.0.7 suffers from a cross site scripting vulnerability.

Simplessus Files 3.7.7 SQL Injection

Posted by deepcore under exploit (No Respond)

Simplessus Files version 3.7.7 suffers from a remote SQL injection vulnerability.

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

http://www.nongsuang.go.th/dnm_file/news/13305_center.jpg

Geutebruck testaction.cgi Remote Command Execution

JBoss 4.0.2 Cross Site Scripting

Xshell5 5.0 Build 1124 DLL Hijacking

Joomla WMT Content Timeline 1.0 SQL Injection

Joomla Groovy Gallery 1.0.0 SQL Injection

Joomla Spider Calendar Lite 3.2.16 SQL Injection

Joomla Team Display 1.2.1 SQL Injection

WordPress Corner Ad 1.0.7 Cross Site Scripting

Simplessus Files 3.7.7 SQL Injection

Tabs Switcher

Categories

Archives

Meta

BLOGROLL