deepcore - :: Deepquest ::

>> OpenSMTPD Local Information Disclosure

USER: deepcore // 2020-02-26 // 0 CMT

Qualys discovered a minor vulnerability in OpenSMTPD, OpenBSD’s mail server. An unprivileged local attacker can read the first line of an arbitrary file (for example, root’s password hash in /etc/master.passwd)…

>> OpenSMTPD Out-Of-Bounds Read

USER: deepcore // 2020-02-26 // 0 CMT

Qualys discovered a vulnerability in OpenSMTPD, OpenBSD’s mail server. This vulnerability, an out-of-bounds read introduced in December 2015, is exploitable remotely and leads to the execution of arbitrary shell commands.

>> [dos] Core FTP LE 2.2 – Denial of Service (PoC)

USER: deepcore // 2020-02-26 // 0 CMT

Core FTP LE 2.2 – Denial of Service (PoC)

>> [webapps] PhpIX 2012 Professional – 'id' SQL Injection

USER: deepcore // 2020-02-26 // 0 CMT

PhpIX 2012 Professional – ‘id’ SQL Injection

>> [remote] OpenSMTPD 6.6.3 – Arbitrary File Read

USER: deepcore // 2020-02-26 // 0 CMT

OpenSMTPD 6.6.3 – Arbitrary File Read

>> http://nonsanga.go.th/web1/file_editor/dbx.txt

USER: deepcore // 2020-02-25 // 0 CMT

http://nonsanga.go.th/web1/file_editor/dbx.txt notified by SeRaVo BlackHaT

>> http://www.nasameng.go.th

USER: deepcore // 2020-02-25 // 0 CMT

http://www.nasameng.go.th notified by Paraná Cyber Mafia

>> Amovision AM-Q6320-WIFI HD Camera Remote Configuration Disclosure

USER: deepcore // 2020-02-25 // 0 CMT

Amovision AM-Q6320-WIFI HD Camera remote configuration disclosure exploit.

>> ESCAM QD-900 WIFI HD Camera Remote Configuration Disclosure

USER: deepcore // 2020-02-25 // 0 CMT

ESCAM QD-900 WIFI HD Camera remote configuration disclosure exploit.

>> SecuSTATION SC-831 HD Camera Remote Configuration Disclosure

USER: deepcore // 2020-02-25 // 0 CMT

SecuSTATION SC-831 HD Camera remote configuration disclosure exploit.