Hackers Leverage Adobe Zero Day Bug Impacting Adobe Reader
Posted by deepcore under exploit (No Respond)
Archive for May, 2021
https://thongfah.dit.go.th/idolsec.htm
Posted by deepcore under defacement (No Respond)
https://thongfah.dit.go.th/idolsec.htm notified by FRK48
Tags: defacementhttps://lowpricemap.dit.go.th/idolsec.htm
Posted by deepcore under defacement (No Respond)
https://lowpricemap.dit.go.th/idolsec.htm notified by FRK48
Tags: defacementhttps://blueflag.dit.go.th/idolsec.htm
Posted by deepcore under defacement (No Respond)
https://blueflag.dit.go.th/idolsec.htm notified by FRK48
Tags: defacementSplinterware System Scheduler Professional 5.30 Privilege Escalation
Posted by deepcore under exploit (No Respond)
Splinterware System Scheduler Professional version 5.30 suffers an unquoted service path vulnerability that allows for privilege escalation.
Mozilla Windows Maintenance Service Weak DACL
Posted by deepcore under exploit (No Respond)
Mozilla’s Firefox 85 for Windows has a weak DACL for domain networks.
SIS-REWE GO 7.5.0/12C Cross Site Scripting
Posted by deepcore under exploit (No Respond)
SIS-REWE GO version 7.5.0/12C suffers from multiple cross site scripting vulnerabilities.
ERPNext 12.18.0 / 13.0.0 SQL Injection
Posted by deepcore under exploit (No Respond)
ERPNext versions 12.18.0 and 13.0.0 suffer from an authenticated remote SQL injection vulnerability.
ERPNext 12.18.0 / 13.0.0 Cross Site Scripting
Posted by deepcore under exploit (No Respond)
ERPNext versions 12.18.0 and 13.0.0 suffer from reflective and persistent cross site scripting vulnerabilities.
[webapps] Chevereto 3.17.1 – Cross Site Scripting (Stored)
Posted by deepcore under Security (No Respond)