deepcore - :: Deepquest ::

>> Ransom Lockbit 3.0 MVID-2022-0621 Code Execution

USER: deepcore // 2022-07-06 // 0 CMT

Lockbit version 3.0 ransomware looks for and executes DLLs in its current directory. Therefore, we can hijack a DLL, in this case “RstrtMgr.dll”, execute our own code, and terminate the…

>> Google: Half Of Zero-Day Exploits Linked To Poor Software Fixes

USER: deepcore // 2022-07-05 // 0 CMT

>> Ransom Lockbit 3.0 MVID-2022-0621 Code Execution

USER: deepcore // 2022-07-05 // 0 CMT

Lockbit version 3.0 ransomware looks for and executes DLLs in its current directory. Therefore, we can hijack a DLL, in this case “RstrtMgr.dll”, execute our own code, and terminate the…

>> Stock Management System 2020 SQL Injection

USER: deepcore // 2022-07-05 // 0 CMT

Stock Management System 2020 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

>> Paymoney 3.3 Cross Site Scripting

USER: deepcore // 2022-07-05 // 0 CMT

Paymoney version 3.3 suffers from a cross site scripting vulnerability.

>> DouPHP 1.2 Release 20141027 SQL Injection

USER: deepcore // 2022-07-05 // 0 CMT

DouPHP version 1.2 Release 20141027 suffers from a remote SQL injection vulnerability.

>> Ransom Lockbit 3.0 MVID-2022-0620 Buffer Overflow

USER: deepcore // 2022-07-05 // 0 CMT

Lockbit ransomware version 3.0 apparently now requires a password to execute as noted by “@vxunderground”, but does not properly check bounds for both the -pass and -k arguments. Supplying a…

>> https://web.sakon2.go.th/daka.htm

USER: deepcore // 2022-07-04 // 0 CMT

https://web.sakon2.go.th/daka.htm notified by Metro Lampung Indonesia Attacker

>> https://bigdata.sakon2.go.th/daka.htm

USER: deepcore // 2022-07-04 // 0 CMT

https://bigdata.sakon2.go.th/daka.htm notified by Metro Lampung Indonesia Attacker

>> https://emoney.sakon2.go.th/daka.htm

USER: deepcore // 2022-07-04 // 0 CMT

https://emoney.sakon2.go.th/daka.htm notified by Metro Lampung Indonesia Attacker