10 - 2018 - :: Deepquest ::

>> https://numbering.nbtc.go.th/xampp/lang.tmp

USER: deepcore // 2018-10-17 // 0 CMT

https://numbering.nbtc.go.th/xampp/lang.tmp notified by VenoM

>> [webapps] TP-Link TL-SC3130 1.6.18 – RTSP Stream Disclosure

USER: deepcore // 2018-10-17 // 0 CMT

TP-Link TL-SC3130 1.6.18 – RTSP Stream Disclosure

>> [webapps] Time and Expense Management System 3.0 – Cross-Site Request Forgery (Add Admin)

USER: deepcore // 2018-10-17 // 0 CMT

Time and Expense Management System 3.0 – Cross-Site Request Forgery (Add Admin)

>> [local] Any Sound Recorder 2.93 – Buffer Overflow (SEH)

USER: deepcore // 2018-10-17 // 0 CMT

Any Sound Recorder 2.93 – Buffer Overflow (SEH)

>> [remote] FLIR AX8 Thermal Camera 1.32.16 – Hard-Coded Credentials

USER: deepcore // 2018-10-17 // 0 CMT

FLIR AX8 Thermal Camera 1.32.16 – Hard-Coded Credentials

>> [webapps] BigTree CMS 4.2.23 – Cross-Site Scripting

USER: deepcore // 2018-10-17 // 0 CMT

BigTree CMS 4.2.23 – Cross-Site Scripting

>> Snes9K 0.0.9z Buffer Overflow

USER: deepcore // 2018-10-16 // 0 CMT

Snes9K version 0.0.9z SEH buffer overflow proof of concept exploit.

>> Mozilla Firefox Picture Drag And Drop Security Bypass

USER: deepcore // 2018-10-16 // 0 CMT

Proof of concept exploit for a Mozilla Firefox picture drag and drop security bypass vulnerability. Tested on versions 3.6.10 up to 62.0.3. Password to decompress this archive is ff2018.

>> BigTree CMS 4.2.23 Cross Site Scripting

USER: deepcore // 2018-10-16 // 0 CMT

BigTree CMS version 4.2.23 suffers from a cross site scripting vulnerability.

>> Alchemy CMS 4.1-Stable Cross Site Scripting

USER: deepcore // 2018-10-16 // 0 CMT

Alchemy CMS version 4.1-Stable suffers from a cross site scripting vulnerability.