:: Deepquest ::

>> WordPress WPGateway 3.5 Privilege Escalation

USER: deepcore // 2022-09-15 // 0 CMT

WordPress WPGateway plugin versions 3.5 and below suffer from an unauthenticated privilege escalation vulnerability.

>> [webapps] Gitea 1.16.6 – Remote Code Execution (RCE) (Metasploit)

USER: deepcore // 2022-09-15 // 0 CMT

Gitea 1.16.6 – Remote Code Execution (RCE) (Metasploit)

>> http://itservice.fpo.go.th/z.php

USER: deepcore // 2022-09-14 // 0 CMT

http://itservice.fpo.go.th/z.php notified by ./Anon666Txploit

>> http://www.rattanaburilocal.go.th/!.php

USER: deepcore // 2022-09-14 // 0 CMT

http://www.rattanaburilocal.go.th/!.php notified by ./Anon666Txploit

>> Rocket LMS 1.6 Shell Upload

USER: deepcore // 2022-09-14 // 0 CMT

Rocket LMS version 1.6 suffers from a remote shell upload vulnerability.

>> Rocket LMS 1.6 Cross Site Scripting

USER: deepcore // 2022-09-14 // 0 CMT

Rocket LMS version 1.6 suffers from a cross site scripting vulnerability.

>> Academy Learning Management System 5.7 Shell Upload

USER: deepcore // 2022-09-14 // 0 CMT

Academy Learning Management System version 5.7 suffers from a remote shell upload vulnerability.

>> TIBCO JasperReports Server 8.0.2 Community Edition Code Execution

USER: deepcore // 2022-09-14 // 0 CMT

Due to JMX/RMI services in TIBCO JasperReports Server version 8.0.2 Community Edition performing unsafe deserialization, it is possible to execute arbitrary code and system commands on the server system.

>> Apple Security Advisory 2022-09-12-1

USER: deepcore // 2022-09-14 // 0 CMT

Apple Security Advisory 2022-09-12-1 – iOS 16 addresses buffer overflow, bypass, code execution, out of bounds read, and spoofing vulnerabilities.

>> Apple Security Advisory 2022-09-12-2

USER: deepcore // 2022-09-14 // 0 CMT

Apple Security Advisory 2022-09-12-2 – iOS 15.7 and iPadOS 15.7 addresses buffer overflow, bypass, code execution, out of bounds read, and spoofing vulnerabilities.