Subscribe via feed.
Archive for September, 2017

A2billing 2.x Backup Disclosure / Code Execution / SQL Injection

Posted by deepcore under exploit (No Respond)

A2billing version 2.x suffers from backup disclosure, remote code execution, and remote SQL injection vulnerabilities.

Mongoose Web Server 6.5 CSRF / Command Execution

Posted by deepcore under exploit (No Respond)

Mongoose Web Server version 6.5 suffers from cross site request forgery and remote command execution vulnerabilities.

NEC EXPRESS CLUSTER clpwebmc Remote Root

Posted by deepcore under exploit (No Respond)

NEC EXPRESS CLUSTER comes with Cluster Manager, a Java applet for cluster configuration and management. The underlying webserver ‘clpwebmc’ runs as root and accepts connections on TCP port 29003 which can be initiated without authentication in the default installation.

http://amss.sakonarea1.go.th

Posted by deepcore under defacement (No Respond)

http://amss.sakonarea1.go.th notified by Baybars Reis

Tags:

http://e-filling57.sakonarea1.go.th

Posted by deepcore under defacement (No Respond)

http://e-filling57.sakonarea1.go.th notified by Baybars Reis

Tags:

http://e-filling58.sakonarea1.go.th

Posted by deepcore under defacement (No Respond)

http://e-filling58.sakonarea1.go.th notified by Baybars Reis

Tags:

http://e-filling59.sakonarea1.go.th

Posted by deepcore under defacement (No Respond)

http://e-filling59.sakonarea1.go.th notified by Baybars Reis

Tags:

http://e-filling60.sakonarea1.go.th

Posted by deepcore under defacement (No Respond)

http://e-filling60.sakonarea1.go.th notified by Baybars Reis

Tags:

http://elearning.sakonarea1.go.th

Posted by deepcore under defacement (No Respond)

http://elearning.sakonarea1.go.th notified by Baybars Reis

Tags:

http://msn.sakonarea1.go.th

Posted by deepcore under defacement (No Respond)

http://msn.sakonarea1.go.th notified by Baybars Reis

Tags: