12 - 2020 - :: Deepquest ::

>> usrsctp pending_reply_queue Out-Of-Bounds Access

USER: deepcore // 2020-12-15 // 0 CMT

usrsctp suffers from a usrsctp pending_reply_queue out-of-bounds access vulnerability.

>> usrsctp HMAC Generation Out-Of-Bounds Access

USER: deepcore // 2020-12-15 // 0 CMT

usrsctp suffers from insecure HMAC generation that can lead to out-of-bounds access.

>> [webapps] Task Management System 1.0 – 'page' Local File Inclusion

USER: deepcore // 2020-12-15 // 0 CMT

Task Management System 1.0 – ‘page’ Local File Inclusion

>> https://www.hanjoth.go.th

USER: deepcore // 2020-12-14 // 0 CMT

https://www.hanjoth.go.th notified by Xyp3r2667

>> https://ppnr.go.th

USER: deepcore // 2020-12-14 // 0 CMT

https://ppnr.go.th notified by Xyp3r2667

>> https://suanmon.go.th

USER: deepcore // 2020-12-14 // 0 CMT

https://suanmon.go.th notified by Xyp3r2667

>> [webapps] Gitlab 11.4.7 – Remote Code Execution

USER: deepcore // 2020-12-14 // 0 CMT

Gitlab 11.4.7 – Remote Code Execution

>> [webapps] Rumble Mail Server 0.51.3135 – 'username' Stored XSS

USER: deepcore // 2020-12-14 // 0 CMT

Rumble Mail Server 0.51.3135 – ‘username’ Stored XSS

>> [webapps] Macally WIFISD2-2A82 2.000.010 – Guest to Root Privilege Escalation

USER: deepcore // 2020-12-14 // 0 CMT

Macally WIFISD2-2A82 2.000.010 – Guest to Root Privilege Escalation

>> [webapps] Rukovoditel 2.6.1 – Cross-Site Request Forgery (Change password)

USER: deepcore // 2020-12-14 // 0 CMT

Rukovoditel 2.6.1 – Cross-Site Request Forgery (Change password)