:: Deepquest ::

>> SoX 14.4.2 Division-By-Zero / Denial Of Service

USER: deepcore // 2022-09-20 // 0 CMT

SoX versions 14.4.2 and below suffer from a division by zero attack when handling WAV files, resulting in denial of service vulnerability and possibly loss of data.

[EXPLOIT]

>> VIAVIWEB Wallpaper Admin SQL Injection / Shell Upload

USER: deepcore // 2022-09-20 // 0 CMT

VIAVIWEB Wallpaper Admin suffers from remote shell upload and remote SQL injection vulnerabilities.

[SECURITY]

>> [local] Blink1Control2 2.2.7 – Weak Password Encryption

USER: deepcore // 2022-09-20 // 0 CMT

Blink1Control2 2.2.7 – Weak Password Encryption

[SECURITY]

>> [webapps] Buffalo TeraStation Network Attached Storage (NAS) 1.66 – Authentication Bypass

USER: deepcore // 2022-09-20 // 0 CMT

Buffalo TeraStation Network Attached Storage (NAS) 1.66 – Authentication Bypass

[SECURITY]

>> [remote] Airspan AirSpot 5410 version 0.3.4.1 – Remote Code Execution (RCE)

USER: deepcore // 2022-09-20 // 0 CMT

Airspan AirSpot 5410 version 0.3.4.1 – Remote Code Execution (RCE)

[SECURITY]

>> [webapps] Bookwyrm v0.4.3 – Authentication Bypass

USER: deepcore // 2022-09-20 // 0 CMT

Bookwyrm v0.4.3 – Authentication Bypass

[SECURITY]

>> [remote] Mobile Mouse 3.6.0.4 – Remote Code Execution (RCE)

USER: deepcore // 2022-09-20 // 0 CMT

Mobile Mouse 3.6.0.4 – Remote Code Execution (RCE)

[DEFACEMENT]

>> https://www.nongpailom.go.th/index.html

USER: deepcore // 2022-09-19 // 0 CMT

https://www.nongpailom.go.th/index.html notified by SanggamXploiter

[DEFACEMENT]

>> http://nonsomboonlocal.go.th

USER: deepcore // 2022-09-19 // 0 CMT

http://nonsomboonlocal.go.th notified by ./Niz4r

[DEFACEMENT]

>> https://www.cntpeo.go.th/o.htm

USER: deepcore // 2022-09-18 // 0 CMT

https://www.cntpeo.go.th/o.htm notified by chinafans

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this: