:: Deepquest ::

>> CASAP Automated Enrollment System 1.1 SQL Injection

USER: deepcore // 2021-03-03 // 0 CMT

CASAP Automated Enrollment System version 1.1 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

>> Web Based Quiz System 1.0 Cross Site Scripting

USER: deepcore // 2021-03-03 // 0 CMT

Web Based Quiz System version 1.0 suffers from a persistent cross site scripting vulnerability related to MCQ options.

>> [remote] AnyDesk 5.5.2 – Remote Code Execution

USER: deepcore // 2021-03-03 // 0 CMT

AnyDesk 5.5.2 – Remote Code Execution

>> [webapps] Local Services Search Engine Management System (LSSMES) 1.0 – 'name' Persistent Cross-Site Scripting (XSS)

USER: deepcore // 2021-03-03 // 0 CMT

Local Services Search Engine Management System (LSSMES) 1.0 – ‘name’ Persistent Cross-Site Scripting (XSS)

>> [webapps] Local Services Search Engine Management System (LSSMES) 1.0 – Blind & Error based SQL injection (Authenticated)

USER: deepcore // 2021-03-03 // 0 CMT

Local Services Search Engine Management System (LSSMES) 1.0 – Blind & Error based SQL injection (Authenticated)

>> https://buathongcity.go.th/tmp/senius.html

USER: deepcore // 2021-03-02 // 0 CMT

https://buathongcity.go.th/tmp/senius.html notified by ZoRRoKiN

>> http://bgepa.dgr.go.th/2558/templates/

USER: deepcore // 2021-03-02 // 0 CMT

http://bgepa.dgr.go.th/2558/templates/ notified by Xyp3r2667

>> http://procurement.dgr.go.th/egp/

USER: deepcore // 2021-03-02 // 0 CMT

http://procurement.dgr.go.th/egp/ notified by Xyp3r2667

>> WiFi Mouse 1.7.8.5 Remote Code Execution

USER: deepcore // 2021-03-02 // 0 CMT

WiFi Mouse version 1.7.8.5 suffers from a remote code execution vulnerability.

>> Backdoor.Win32.RemoteManipulator.fdo Insecure Permissions

USER: deepcore // 2021-03-02 // 0 CMT

Backdoor.Win32.RemoteManipulator.fdo malware suffers from an insecure permissions vulnerability.