10 - 2020 - :: Deepquest ::

>> Hashicorp Vault AWS IAM Integration Authentication Bypass

USER: deepcore // 2020-10-07 // 0 CMT

HashiCorp Vault’s AWS IAM authentication method can be bypassed by sending a serialized request to the STS AssumeRoleWithWebIdentity method as part of the authentication flow. The request triggers a JSON…

>> Hashicorp Vault GCP IAM Integration Authentication Bypass

USER: deepcore // 2020-10-07 // 0 CMT

HashiCorp Vault’s GCP authentication method can be bypassed on gce type roles that do not specify bound_service_accounts. Vault does not enforce that the compute_engine data in a signed JWT token…

>> http://www.klonghok.go.th

USER: deepcore // 2020-10-07 // 0 CMT

http://www.klonghok.go.th notified by Tev3R

>> Tenda Router Zero-Days Emerge In Spyware Botnet Campaign

USER: deepcore // 2020-10-07 // 0 CMT

>> [dos] BACnet Test Server 1.01 – Remote Denial of Service (PoC)

USER: deepcore // 2020-10-07 // 0 CMT

BACnet Test Server 1.01 – Remote Denial of Service (PoC)

>> [webapps] Textpattern CMS 4.6.2 – 'body' Persistent Cross-Site Scripting

USER: deepcore // 2020-10-07 // 0 CMT

Textpattern CMS 4.6.2 – ‘body’ Persistent Cross-Site Scripting

>> SpamTitan 7.07 Remote Code Execution

USER: deepcore // 2020-10-06 // 0 CMT

SpamTitan version 7.07 suffers from an unauthenticated remote code execution vulnerability in snmp-x.php.

>> Restaurant Reservation System 1.0 SQL Injection

USER: deepcore // 2020-10-06 // 0 CMT

Restaurant Reservation System version 1.0 suffers from an authenticated remote SQL injection vulnerability.

>> [webapps] EasyPMS 1.0.0 – Authentication Bypass

USER: deepcore // 2020-10-06 // 0 CMT

EasyPMS 1.0.0 – Authentication Bypass

>> [webapps] Karel IP Phone IP1211 Web Management Panel – Directory Traversal

USER: deepcore // 2020-10-06 // 0 CMT

Karel IP Phone IP1211 Web Management Panel – Directory Traversal