:: Deepquest :: This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Month: June 2021

defacement

http://dnprg15.dnp.go.th

http://dnprg15.dnp.go.th notified by Hamza Anonime

deepcoreJun 18, 2021

Security

[webapps] Node.JS – 'node-serialize' Remote Code Execution (3)

Node.JS – ‘node-serialize’ Remote Code Execution...

deepcoreJun 18, 2021

Security

[remote] Dlink DSL2750U – 'Reboot' Command Injection

Dlink DSL2750U – ‘Reboot’ Command Injection

deepcoreJun 18, 2021

Security

[webapps] ICE Hrm 29.0.0.OS – 'xml upload' Stored Cross-Site Scripting (XSS)

ICE Hrm 29.0.0.OS – ‘xml upload’...

deepcoreJun 18, 2021

Security

[webapps] ICE Hrm 29.0.0.OS – 'Account Takeover' Cross-Site Request Forgery (CSRF)

ICE Hrm 29.0.0.OS – ‘Account Takeover’...

deepcoreJun 18, 2021

Security

[webapps] ICE Hrm 29.0.0.OS – 'Account Takeover' Cross-Site Scripting and Session Fixation

ICE Hrm 29.0.0.OS – ‘Account Takeover’...

deepcoreJun 18, 2021

defacement

http://www.bantako.go.th

http://www.bantako.go.th notified by Xyp3r2667

deepcoreJun 17, 2021

Security

[webapps] Online Shopping Portal 3.1 – Remote Code Execution (Unauthenticated)

Online Shopping Portal 3.1 – Remote...

deepcoreJun 17, 2021

Security

[webapps] Zoho ManageEngine ServiceDesk Plus MSP 9.4 – User Enumeration

Zoho ManageEngine ServiceDesk Plus MSP 9.4...

deepcoreJun 17, 2021

Security

[local] VX Search 13.5.28 – 'Multiple' Unquoted Service Path

VX Search 13.5.28 – ‘Multiple’ Unquoted...

deepcoreJun 17, 2021