deepcore - :: Deepquest ::

>> http://tungpheesao.go.th/pun10.html

USER: deepcore // 2021-05-17 // 0 CMT

http://tungpheesao.go.th/pun10.html notified by Anonymous_R

>> http://paisali.go.th/pun10.html

USER: deepcore // 2021-05-17 // 0 CMT

http://paisali.go.th/pun10.html notified by Anonymous_R

>> [webapps] Customer Relationship Management (CRM) System 1.0 – 'Category' Persistent Cross site Scripting

USER: deepcore // 2021-05-17 // 0 CMT

Customer Relationship Management (CRM) System 1.0 – ‘Category’ Persistent Cross site Scripting

>> [webapps] IPFire 2.25 – Remote Code Execution (Authenticated)

USER: deepcore // 2021-05-17 // 0 CMT

IPFire 2.25 – Remote Code Execution (Authenticated)

>> [webapps] Dental Clinic Appointment Reservation System 1.0 – 'Firstname' Persistent Cross Site Scripting (Authenticated)

USER: deepcore // 2021-05-17 // 0 CMT

Dental Clinic Appointment Reservation System 1.0 – ‘Firstname’ Persistent Cross Site Scripting (Authenticated)

>> [webapps] Dental Clinic Appointment Reservation System 1.0 – Cross Site Request Forgery (Add Admin)

USER: deepcore // 2021-05-17 // 0 CMT

Dental Clinic Appointment Reservation System 1.0 – Cross Site Request Forgery (Add Admin)

>> Student Management System 1.0 Cross Site Scripting

USER: deepcore // 2021-05-15 // 0 CMT

Student Management System version 1.0 suffers from a persistent cross site scripting vulnerability.

>> Podcast Generator 3.1 Cross Site Scripting

USER: deepcore // 2021-05-15 // 0 CMT

Podcast Generator version 3.1 suffers from a persistent cross site scripting vulnerability.

>> Chamilo LMS 1.11.14 Remote Code Execution

USER: deepcore // 2021-05-15 // 0 CMT

Chamilo LMS version 1.11.14 authenticated remote code execution exploit.

>> Chrome Array Transfer Bypass

USER: deepcore // 2021-05-15 // 0 CMT

The fix for CVE-2021-21148 has added a check in |ValueSerializer::WriteJSArrayBuffer| to make sure non-detachable array buffers cannot be transferred. The check can be bypassed with the help of asm.js and…