3 - 2021 - :: Deepquest ::

>> [local] Configuration Tool 1.6.53 – 'OpLclSrv' Unquoted Service Path

USER: deepcore // 2021-03-08 // 0 CMT

Configuration Tool 1.6.53 – ‘OpLclSrv’ Unquoted Service Path

>> [local] Pingzapper 2.3.1 – 'PingzapperSvc' Unquoted Service Path

USER: deepcore // 2021-03-08 // 0 CMT

Pingzapper 2.3.1 – ‘PingzapperSvc’ Unquoted Service Path

>> [local] Print Job Accounting 4.4.10 – 'OkiJaSvc' Unquoted Service Path

USER: deepcore // 2021-03-08 // 0 CMT

Print Job Accounting 4.4.10 – ‘OkiJaSvc’ Unquoted Service Path

>> http://iud.phitsanulok3.go.th/ina.htm

USER: deepcore // 2021-03-07 // 0 CMT

http://iud.phitsanulok3.go.th/ina.htm notified by Xyp3r2667

>> http://tamkrataitong.go.th/ownd.htm

USER: deepcore // 2021-03-06 // 0 CMT

http://tamkrataitong.go.th/ownd.htm notified by No_Identity

>> CatDV 9.2 Authentication Bypass

USER: deepcore // 2021-03-06 // 0 CMT

CatDV version 9.2 RMI authentication bypass exploit.

>> Fluig 1.7.0 Path Traversal

USER: deepcore // 2021-03-06 // 0 CMT

Fluig versions 1.7.0-210217 and below suffer from a path traversal vulnerability.

>> Microsoft Windows RRAS Service MIBEntryGet Overflow

USER: deepcore // 2021-03-06 // 0 CMT

This Metasploit module exploits an overflow in the Windows Routing and Remote Access Service (RRAS) to execute code as SYSTEM. The RRAS DCERPC endpoint is accessible to unauthenticated users via…

>> e107 CMS 2.3.0 Cross Site Request Forgery

USER: deepcore // 2021-03-05 // 0 CMT

e107 CMS version 2.3.0 suffers from a cross site request forgery vulnerability.

>> Web Based Quiz System 1.0 SQL Injection

USER: deepcore // 2021-03-05 // 0 CMT

Web Based Quiz System version 1.0 suffers from a remote SQL injection vulnerability.