6 - 2021 - :: Deepquest ::

[DEFACEMENT]

>> http://dnprg15.dnp.go.th

USER: deepcore // 2021-06-18 // 0 CMT

http://dnprg15.dnp.go.th notified by Hamza Anonime

[SECURITY]

>> [webapps] Node.JS – 'node-serialize' Remote Code Execution (3)

USER: deepcore // 2021-06-18 // 0 CMT

Node.JS – ‘node-serialize’ Remote Code Execution (3)

[SECURITY]

>> [remote] Dlink DSL2750U – 'Reboot' Command Injection

USER: deepcore // 2021-06-18 // 0 CMT

Dlink DSL2750U – ‘Reboot’ Command Injection

[SECURITY]

>> [webapps] ICE Hrm 29.0.0.OS – 'xml upload' Stored Cross-Site Scripting (XSS)

USER: deepcore // 2021-06-18 // 0 CMT

ICE Hrm 29.0.0.OS – ‘xml upload’ Stored Cross-Site Scripting (XSS)

[SECURITY]

>> [webapps] ICE Hrm 29.0.0.OS – 'Account Takeover' Cross-Site Request Forgery (CSRF)

USER: deepcore // 2021-06-18 // 0 CMT

ICE Hrm 29.0.0.OS – ‘Account Takeover’ Cross-Site Request Forgery (CSRF)

[SECURITY]

>> [webapps] ICE Hrm 29.0.0.OS – 'Account Takeover' Cross-Site Scripting and Session Fixation

USER: deepcore // 2021-06-18 // 0 CMT

ICE Hrm 29.0.0.OS – ‘Account Takeover’ Cross-Site Scripting and Session Fixation

[DEFACEMENT]

>> http://www.bantako.go.th

USER: deepcore // 2021-06-17 // 0 CMT

http://www.bantako.go.th notified by Xyp3r2667

[SECURITY]

>> [webapps] Online Shopping Portal 3.1 – Remote Code Execution (Unauthenticated)

USER: deepcore // 2021-06-17 // 0 CMT

Online Shopping Portal 3.1 – Remote Code Execution (Unauthenticated)

[SECURITY]

>> [webapps] Zoho ManageEngine ServiceDesk Plus MSP 9.4 – User Enumeration

USER: deepcore // 2021-06-17 // 0 CMT

Zoho ManageEngine ServiceDesk Plus MSP 9.4 – User Enumeration

[SECURITY]

>> [local] VX Search 13.5.28 – 'Multiple' Unquoted Service Path

USER: deepcore // 2021-06-17 // 0 CMT

VX Search 13.5.28 – ‘Multiple’ Unquoted Service Path

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this: