11 - 2020 - :: Deepquest ::

>> TP-Link TL-WA855RE V5_200415 Device Reset Authentication Bypass

USER: deepcore // 2020-11-24 // 0 CMT

The TP-Link TL-WA855RE V5_200415 suffers from a flow where an unauthenticated attacker can reset the device and then set a new administrator password.

[EXPLOIT]

>> LifeRay 7.2.1 GA2 Cross Site Scripting

USER: deepcore // 2020-11-24 // 0 CMT

LifeRay version 7.2.1 GA2 suffers from a persistent cross site scripting vulnerability.

[DEFACEMENT]

>> http://www.sa-aat.go.th

USER: deepcore // 2020-11-24 // 0 CMT

http://www.sa-aat.go.th notified by Xyp3r2667

[DEFACEMENT]

>> http://www.muangphoe.go.th

USER: deepcore // 2020-11-24 // 0 CMT

http://www.muangphoe.go.th notified by Xyp3r2667

[DEFACEMENT]

>> http://jaroensuk.go.th

USER: deepcore // 2020-11-24 // 0 CMT

http://jaroensuk.go.th notified by Xyp3r2667

[DEFACEMENT]

>> http://www.sajorakhea.go.th

USER: deepcore // 2020-11-24 // 0 CMT

http://www.sajorakhea.go.th notified by Xyp3r2667

[SECURITY]

>> [webapps] OpenCart 3.0.3.6 – 'subject' Stored Cross-Site Scripting

USER: deepcore // 2020-11-24 // 0 CMT

OpenCart 3.0.3.6 – ‘subject’ Stored Cross-Site Scripting

[SECURITY]

>> [webapps] Apache OpenMeetings 5.0.0 – 'hostname' Denial of Service

USER: deepcore // 2020-11-24 // 0 CMT

Apache OpenMeetings 5.0.0 – ‘hostname’ Denial of Service

[SECURITY]

>> [webapps] nopCommerce Store 4.30 – 'name' Stored Cross-Site Scripting

USER: deepcore // 2020-11-24 // 0 CMT

nopCommerce Store 4.30 – ‘name’ Stored Cross-Site Scripting

[DEFACEMENT]

>> http://plai.go.th

USER: deepcore // 2020-11-23 // 0 CMT

http://plai.go.th notified by Xyp3r2667

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this: