:: Deepquest ::

Polkit version Polkit 0.105-26 0.117-2 suffers from a local privilege escalation vulnerability.

This document illustrates proof of concept exploitation of a vulnerability in WordPress versions 5.6.0 through 5.7.0 that gives a user the ability to upload files on a server and exploit an XML parsing issue in the Media Library using an MP3 file upload that leads to an XXE attack.

Brother BRPrint Auditor version 3.0.7 suffers from an unquoted service path vulnerability.

This Metasploit module lets you create a batch job on HashiCorp’s Nomad service to spawn a shell. The default option is to use the raw_exec driver, which runs with high privileges. Development servers and clients explicitly enabling the raw_exec plugin can spawn these type of jobs. Regular exec jobs can be created in a similar […]

This Metasploit module exploits an authenticated command injection vulnerability in the /cgi-bin/pakfire.cgi web page of IPFire devices running versions 2.25 Core Update 156 and prior to execute arbitrary code as the root user.

Client Management System version 1.1 suffers from a persistent cross site scripting vulnerability.

Client Management System version 1.1 suffers from a remote SQL injection vulnerability.

A malicious unauthenticated user could abuse the lack of authentication check on SAP Java P2P cluster communication in order to connect to the respective TCP ports and perform different privileged actions. SAP Netweaver JAVA versions 7.10 through 7.50 are affected.

http://www.banyanglocal.go.th notified by Xyp3r2667

http://www.nongchaisri.go.th notified by Xyp3r2667