:: Deepquest ::

>> moziloCMS 2.0 Cross Site Scripting

USER: deepcore // 2020-09-02 // 0 CMT

moziloCMS version 2.0 suffers from a persistent cross site scripting vulnerability.

>> [webapps] Stock Management System 1.0 – Cross-Site Request Forgery (Change Username)

USER: deepcore // 2020-09-02 // 0 CMT

Stock Management System 1.0 – Cross-Site Request Forgery (Change Username)

>> TP-Link WDR4300 Remote Code Execution

USER: deepcore // 2020-09-01 // 0 CMT

TP-Link WDR4300 with firmware versions 3.13.33 and 3.14.3 post-authentication remote code execution exploit.

>> Online Book Store 1.0 SQL Injection

USER: deepcore // 2020-09-01 // 0 CMT

Online Book Store version 1.0 suffers from a remote SQL injection vulnerability.

>> BlazeDVD 7.0 Professional Buffer Overflow

USER: deepcore // 2020-09-01 // 0 CMT

BlazeDVD version 7.0 Professional local SEH/ASLR/DEP buffer overflow exploit.

>> Fuel CMS 1.4.8 SQL Injection

USER: deepcore // 2020-09-01 // 0 CMT

Fuel CMS version 1.4.8 suffers from an authenticated remote SQL injection vulnerability.

>> CMS Made Simple 2.2.14 Shell Upload

USER: deepcore // 2020-09-01 // 0 CMT

CMS Made Simple version 2.2.14 suffers from an authenticated remote shell upload vulnerability.

>> https://www.dft.go.th/laZy.txt

USER: deepcore // 2020-09-01 // 0 CMT

https://www.dft.go.th/laZy.txt notified by laZy hAcker

>> Cisco Warns Of Actively Exploited IOS XR Zero Day

USER: deepcore // 2020-09-01 // 0 CMT

>> [webapps] Mara CMS 7.5 – Remote Code Execution (Authenticated)

USER: deepcore // 2020-09-01 // 0 CMT

Mara CMS 7.5 – Remote Code Execution (Authenticated)