10 - 2022 - :: Deepquest ::

>> Online Shopping System Advanced 1.0 SQL Injection

USER: deepcore // 2022-10-11 // 0 CMT

Online Shopping System Advanced version 1.0 suffers from multiple remote SQL injection vulnerabilities.

>> Linux munmap() Race Condition / Use-After-Free

USER: deepcore // 2022-10-11 // 0 CMT

Linux has an issue with munmap() racing with pagemap_read() that leads to a page use-after-free vulnerability.

>> WordPress Zephyr Project Manager 3.2.42 SQL Injection

USER: deepcore // 2022-10-08 // 0 CMT

WordPress Zephyr Project Manager plugin version 3.2.42 suffers from a remote SQL injection vulnerability.

>> Joomla Vik Booking 1.15.0 Cross Site Scripting

USER: deepcore // 2022-10-08 // 0 CMT

Joomla Vik Booking extension version 1.15.0 suffers from a cross site scripting vulnerability.

>> Joomla JoomBri Freelance 4.5.0 Cross Site Scripting

USER: deepcore // 2022-10-07 // 0 CMT

Joomla JoomBri Freelance extension version 4.5.0 suffers from a cross site scripting vulnerability.

>> Joomla JoomBri Careers 3.3.0 Cross Site Scripting

USER: deepcore // 2022-10-07 // 0 CMT

Joomla JoomBri Careers extension version 3.3.0 suffers from a cross site scripting vulnerability.

>> Linux 3.19 anon_vma Use-After-Free

USER: deepcore // 2022-10-07 // 0 CMT

Linux suffers from an anon_vma use-after-free vulnerability through the bogus merge of VMAs caused by double-reuse of leaf anon_vma because of ->degree misinterpretation.

>> Joomla KSAdvertiser 2.5.37 Cross Site Scripting

USER: deepcore // 2022-10-07 // 0 CMT

Joomla KSAdvertiser extension version 2.5.37 suffers from a cross site scripting vulnerability.

>> http://ped.go.th

USER: deepcore // 2022-10-07 // 0 CMT

http://ped.go.th notified by ByME

>> https://www.lripeo.go.th/robots.txt

USER: deepcore // 2022-10-07 // 0 CMT

https://www.lripeo.go.th/robots.txt notified by ByME