1 - 2018 - :: Deepquest ::

>> [webapps] PerfexCRM 1.9.7 – Arbitrary File Upload

USER: deepcore // 2018-01-15 // 0 CMT

PerfexCRM 1.9.7 – Arbitrary File Upload

>> [webapps] ImgHosting 1.5 – Cross-Site Scripting

USER: deepcore // 2018-01-15 // 0 CMT

ImgHosting 1.5 – Cross-Site Scripting

>> [webapps] pfSense < 2.1.4 – 'status_rrd_graph_img.php' Command Injection

USER: deepcore // 2018-01-15 // 0 CMT

pfSense < 2.1.4 – 'status_rrd_graph_img.php' Command Injection

>> http://pni.go.th/index.html

USER: deepcore // 2018-01-13 // 0 CMT

http://pni.go.th/index.html notified by ZoRRoKiN

>> http://phonchan.go.th/cok.htm

USER: deepcore // 2018-01-13 // 0 CMT

http://phonchan.go.th/cok.htm notified by ./cOLI

>> ALLMediaServer 0.95 Stack Buffer Overflow

USER: deepcore // 2018-01-13 // 0 CMT

ALLMediaServer version 0.95 stack buffer overflow exploit with DEP bypass on Windows 7 x64.

>> D-Link Routers 110/412/615/815 Arbitrary Code Execution

USER: deepcore // 2018-01-13 // 0 CMT

D-Link routers 110/412/615/815 versions prior to 1.03 suffer from a service.cgi arbitrary code execution vulnerability.

>> SAP NetWeaver J2EE Engine 7.40 SQL Injection

USER: deepcore // 2018-01-13 // 0 CMT

SAP NetWeaver J2EE Engine version 7.40 suffers from a remote SQL injection vulnerability.

>> macOS process_policy Stack Leak

USER: deepcore // 2018-01-13 // 0 CMT

macOS suffers from a process_policy stack leak through an uninitialized field.

>> eBPF 4.9-stable Verifier Bug Backported

USER: deepcore // 2018-01-13 // 0 CMT

eBPF had the verifier bug backported to version 4.9-stable.