Subscribe via feed.
Archive for June, 2021

http://dongichan.go.th/pun10.html

Posted by deepcore under defacement (No Respond)

http://dongichan.go.th/pun10.html notified by Jakarta Blackhat

Tags:

http://nasum.go.th/pun10.html

Posted by deepcore under defacement (No Respond)

http://nasum.go.th/pun10.html notified by Jakarta Blackhat

Tags:

[local] iFunbox 4.2 – 'Apple Mobile Device Service' Unquoted Service Path

Posted by deepcore under Security (No Respond)

iFunbox 4.2 – ‘Apple Mobile Device Service’ Unquoted Service Path

Tags: ,

[local] Wise Care 365 5.6.7.568 – 'WiseBootAssistant' Unquoted Service Path

Posted by deepcore under Security (No Respond)

Wise Care 365 5.6.7.568 – ‘WiseBootAssistant’ Unquoted Service Path

Tags: ,

[remote] Solaris SunSSH 11.0 x86 – libpam Remote Root (3)

Posted by deepcore under Security (No Respond)

Solaris SunSSH 11.0 x86 – libpam Remote Root (3)

Tags: ,

[webapps] OpenEMR 5.0.1.7 – 'fileName' Path Traversal (Authenticated)

Posted by deepcore under Security (No Respond)

OpenEMR 5.0.1.7 – ‘fileName’ Path Traversal (Authenticated)

Tags: ,

DiskPulse 13.6.14 Unquoted Service Path

Posted by deepcore under exploit (No Respond)

DiskPulse version 13.6.14 suffers from an unquoted service path vulnerability.

Disk Sorter Server 13.6.12 Unquoted Service Path

Posted by deepcore under exploit (No Respond)

Disk Sorter Server version 13.6.12 suffers from an unquoted service path vulnerability.

Teachers Record Management System 1.0 Cross Site Scripting

Posted by deepcore under exploit (No Respond)

Teachers Record Management System version 1.0 suffers from a persistent cross site scripting vulnerability.

Teachers Record Management System 1.0 SQL Injection

Posted by deepcore under exploit (No Respond)

Teachers Record Management System version 1.0 suffers from multiple remote SQL injection vulnerabilities. This report has additional payloads although the original discovery of SQL injection in this version is attributed to gh1mau in July of 2020.