:: Deepquest ::

>> http://projectdol2.dol.go.th/read.txt

USER: deepcore // 2021-03-25 // 0 CMT

http://projectdol2.dol.go.th/read.txt notified by Mr.L3RB1

>> http://cems.diw.go.th/read.txt

USER: deepcore // 2021-03-25 // 0 CMT

http://cems.diw.go.th/read.txt notified by Mr.L3RB1

>> [webapps] Dolibarr ERP/CRM 11.0.4 – File Upload Restrictions Bypass (Authenticated RCE)

USER: deepcore // 2021-03-25 // 0 CMT

Dolibarr ERP/CRM 11.0.4 – File Upload Restrictions Bypass (Authenticated RCE)

>> [webapps] Genexis Platinum-4410 P4410-V2-1.31A – 'start_addr' Persistent Cross-Site Scripting

USER: deepcore // 2021-03-25 // 0 CMT

Genexis Platinum-4410 P4410-V2-1.31A – ‘start_addr’ Persistent Cross-Site Scripting

>> [webapps] Linksys EA7500 2.0.8.194281 – Cross-Site Scripting

USER: deepcore // 2021-03-25 // 0 CMT

Linksys EA7500 2.0.8.194281 – Cross-Site Scripting

>> [webapps] Ovidentia 6 – 'id' SQL injection (Authenticated)

USER: deepcore // 2021-03-25 // 0 CMT

Ovidentia 6 – ‘id’ SQL injection (Authenticated)

>> MyBB 1.8.25 SQL Injection

USER: deepcore // 2021-03-24 // 0 CMT

MyBB version 1.8.25 suffers from a remote SQL injection vulnerability.

>> WordPress Mapplic-Lite 1.0 SSRF / Cross Site Scripting

USER: deepcore // 2021-03-24 // 0 CMT

WordPress Mapplic-Lite plugin version 1.0 suffers from a server-side request forgery vulnerability that can be leveraged to commit cross site scripting attacks.

>> WordPress Mapplic 6.1 SSRF / Cross Site Scripting

USER: deepcore // 2021-03-24 // 0 CMT

WordPress Mapplic plugin versions 6.1 and below suffer from a server-side request forgery vulnerability that can be leveraged to commit cross site scripting attacks.

>> Hi-Rez Studios 5.1.6.3 Unquoted Service Path

USER: deepcore // 2021-03-24 // 0 CMT

Hi-Rez Studios version 5.1.6.3 suffers from an unquoted service path vulnerability.