:: Deepquest ::

[DEFACEMENT]

>> https://thongfah.dit.go.th/idolsec.htm

USER: deepcore // 2021-05-12 // 0 CMT

https://thongfah.dit.go.th/idolsec.htm notified by FRK48

[DEFACEMENT]

>> https://lowpricemap.dit.go.th/idolsec.htm

USER: deepcore // 2021-05-12 // 0 CMT

https://lowpricemap.dit.go.th/idolsec.htm notified by FRK48

[DEFACEMENT]

>> https://blueflag.dit.go.th/idolsec.htm

USER: deepcore // 2021-05-12 // 0 CMT

https://blueflag.dit.go.th/idolsec.htm notified by FRK48

[EXPLOIT]

>> Splinterware System Scheduler Professional 5.30 Privilege Escalation

USER: deepcore // 2021-05-12 // 0 CMT

Splinterware System Scheduler Professional version 5.30 suffers an unquoted service path vulnerability that allows for privilege escalation.

[EXPLOIT]

>> Mozilla Windows Maintenance Service Weak DACL

USER: deepcore // 2021-05-12 // 0 CMT

Mozilla’s Firefox 85 for Windows has a weak DACL for domain networks.

[EXPLOIT]

>> SIS-REWE GO 7.5.0/12C Cross Site Scripting

USER: deepcore // 2021-05-12 // 0 CMT

SIS-REWE GO version 7.5.0/12C suffers from multiple cross site scripting vulnerabilities.

[EXPLOIT]

>> ERPNext 12.18.0 / 13.0.0 SQL Injection

USER: deepcore // 2021-05-12 // 0 CMT

ERPNext versions 12.18.0 and 13.0.0 suffer from an authenticated remote SQL injection vulnerability.

[EXPLOIT]

>> ERPNext 12.18.0 / 13.0.0 Cross Site Scripting

USER: deepcore // 2021-05-12 // 0 CMT

ERPNext versions 12.18.0 and 13.0.0 suffer from reflective and persistent cross site scripting vulnerabilities.

[SECURITY]

>> [webapps] Chevereto 3.17.1 – Cross Site Scripting (Stored)

USER: deepcore // 2021-05-12 // 0 CMT

Chevereto 3.17.1 – Cross Site Scripting (Stored)

[SECURITY]

>> [local] Splinterware System Scheduler Professional 5.30 – Unquoted Service Path

USER: deepcore // 2021-05-12 // 0 CMT

Splinterware System Scheduler Professional 5.30 – Unquoted Service Path

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this: