deepcore - :: Deepquest ::

>> AnyDesk 5.4.0 Unquoted Service Path

USER: deepcore // 2020-01-08 // 0 CMT

AnyDesk version 5.4.0 suffers from an unquoted service path vulnerability.

>> Complaint Management System 4.0 Remote Code Execution

USER: deepcore // 2020-01-08 // 0 CMT

Complaint Management System version 4.0 suffers from a remote code execution vulnerability.

>> Dairy Farm Shop Management System 1.0 SQL Injection

USER: deepcore // 2020-01-08 // 0 CMT

Dairy Farm Shop Management System version 1.0 suffers from a remote SQL injection vulnerability.

>> piSignage 2.6.4 Directory Traversal

USER: deepcore // 2020-01-08 // 0 CMT

piSignage version 2.6.4 suffers from a directory traversal vulnerability.

>> Dairy Farm Shop Management System 1.0 Cross Site Scripting

USER: deepcore // 2020-01-08 // 0 CMT

Dairy Farm Shop Management System version 1.0 suffers from a persistent cross site scripting vulnerability.

>> Job Portal 1.0 Shell Upload

USER: deepcore // 2020-01-08 // 0 CMT

Job Portal version 1.0 suffers from a remote shell upload vulnerability.

>> Fortinet FortiSIEM 5.2.5 / 5.2.6 Hardcoded Key

USER: deepcore // 2020-01-08 // 0 CMT

Fortinet FortiSIEM has a hard-coded SSH public key for user “tunneluser” which is the same between all installs. An attacker with this key can successfully authenticate as this user to…

>> http://server91.labour.go.th/kurd.html

USER: deepcore // 2020-01-08 // 0 CMT

http://server91.labour.go.th/kurd.html notified by 0x1998

>> [webapps] Codoforum 4.8.3 – 'input_txt' Persistent Cross-Site Scripting

USER: deepcore // 2020-01-08 // 0 CMT

Codoforum 4.8.3 – ‘input_txt’ Persistent Cross-Site Scripting

>> [remote] Cisco DCNM JBoss 10.4 – Credential Leakage

USER: deepcore // 2020-01-08 // 0 CMT

Cisco DCNM JBoss 10.4 – Credential Leakage