:: Deepquest ::

>> [webapps] Dental Clinic Appointment Reservation System 1.0 – Authentication Bypass (SQLi)

USER: deepcore // 2021-05-13 // 0 CMT

Dental Clinic Appointment Reservation System 1.0 – Authentication Bypass (SQLi)

>> [webapps] Dental Clinic Appointment Reservation System 1.0 – 'date' UNION based SQL Injection (Authenticated)

USER: deepcore // 2021-05-13 // 0 CMT

Dental Clinic Appointment Reservation System 1.0 – ‘date’ UNION based SQL Injection (Authenticated)

>> Hackers Leverage Adobe Zero Day Bug Impacting Adobe Reader

USER: deepcore // 2021-05-12 // 0 CMT

>> https://thongfah.dit.go.th/idolsec.htm

USER: deepcore // 2021-05-12 // 0 CMT

https://thongfah.dit.go.th/idolsec.htm notified by FRK48

>> https://lowpricemap.dit.go.th/idolsec.htm

USER: deepcore // 2021-05-12 // 0 CMT

https://lowpricemap.dit.go.th/idolsec.htm notified by FRK48

>> https://blueflag.dit.go.th/idolsec.htm

USER: deepcore // 2021-05-12 // 0 CMT

https://blueflag.dit.go.th/idolsec.htm notified by FRK48

>> Splinterware System Scheduler Professional 5.30 Privilege Escalation

USER: deepcore // 2021-05-12 // 0 CMT

Splinterware System Scheduler Professional version 5.30 suffers an unquoted service path vulnerability that allows for privilege escalation.

>> Mozilla Windows Maintenance Service Weak DACL

USER: deepcore // 2021-05-12 // 0 CMT

Mozilla’s Firefox 85 for Windows has a weak DACL for domain networks.

>> SIS-REWE GO 7.5.0/12C Cross Site Scripting

USER: deepcore // 2021-05-12 // 0 CMT

SIS-REWE GO version 7.5.0/12C suffers from multiple cross site scripting vulnerabilities.

>> ERPNext 12.18.0 / 13.0.0 SQL Injection

USER: deepcore // 2021-05-12 // 0 CMT

ERPNext versions 12.18.0 and 13.0.0 suffer from an authenticated remote SQL injection vulnerability.