Using a web browser or script server-side request forgery (SSRF) can be initiated against internal/external systems to conduct port scans by leveraging D-LINK’s MailConnect component. The MailConnect feature on D-Link Central WiFiManager CWM-100 version 1.03 r0098 devices is intended to check a connection to an SMTP server but actually allows outbound TCP to any port […]
D-Link Central WiFiManager CWM-100 version 1.03 r0098 devices will load a trojan horse “quserex.dll” and will create a new thread running with SYSTEM integrity.
http://leamsingha.go.th/king.txt notified by ErrOr SquaD
Tags:
defacement
http://chanmunic.go.th/king.txt notified by ErrOr SquaD
Tags:
defacement
http://www.kakoh.go.th/imggallery notified by Yacine_Dexter
Tags:
defacement
http://ictg.onwr.go.th/layouts/ notified by Ayyıldız Tim
Tags:
defacement
http://flood.correct.go.th notified by Ayyıldız Tim
Tags:
defacement
Linux/x64 – Bind TCP (4444/TCP) Shell (/bin/sh) + Password (1234567) Shellcode (136 bytes)
Tags:
0day,
remote exploit
eToolz version 3.4.8.0 suffers from a denial of service vulnerability.
VSAXESS version 2.6.2.70 build 20171226_053 suffers from an organization field denial of service vulnerability.
