what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 27 RSS Feed

Files Date: 2020-10-19

Microsoft SharePoint SSI / ViewState Remote Code Execution
Posted Oct 19, 2020
Authored by mr_me, wvu | Site metasploit.com

This Metasploit module exploits a server-side include (SSI) in SharePoint to leak the web.config file and forge a malicious ViewState with the extracted validation key. This exploit is authenticated and requires a user with page creation privileges, which is a standard permission in SharePoint. The web.config file will be stored in loot once retrieved, and the VALIDATION_KEY option can be set to short-circuit the SSI and trigger the ViewState deserialization.

tags | exploit, web
advisories | CVE-2020-16952
SHA-256 | 8a772bb328a333818435b0fb7d18aa9de7efe3438db2021c6e23eafb2146379d
Chrome USB::OnServiceConnectionError Use-After-Free
Posted Oct 19, 2020
Authored by Google Security Research, Glazvunov

Chrome suffers from a use-after-free vulnerability in USB::OnServiceConnectionError.

tags | exploit
advisories | CVE-2020-6541
SHA-256 | af571cd7b73348569916874836e7fa9cbd595fe40acbf341f94227122d3a1e75
Chrome WebIDBGetDBNamesCallbacksImpl::SuccessNamesAndVersionsList Use-After-Free
Posted Oct 19, 2020
Authored by Google Security Research, Glazvunov

Chrome suffers from a use-after-free vulnerability in WebIDBGetDBNamesCallbacksImpl::SuccessNamesAndVersionsList.

tags | exploit
advisories | CVE-2020-6550
SHA-256 | 8e21afeab54923d3de27189a323803a9161f7809d6877e69a623691087435de9
Mocha For Android Audio Interception
Posted Oct 19, 2020
Authored by Google Security Research, natashenka

Mocha for Android suffers from an issue where a call can cause the callee device to send audio without user interaction.

tags | exploit
SHA-256 | 078a2b1dbfd8b4b095b8a8f5aa7337b720212abfd0a23556c214315335c030be
ReQuest Serious Play F3 Media Server 7.0.3 Unauthenticated Remote Code Execution
Posted Oct 19, 2020
Authored by LiquidWorm | Site zeroscience.mk

ReQuest Serious Play F3 Media Server version 7.0.3 suffers from an unauthenticated remote code execution vulnerability. Abusing the hidden ReQuest Internal Utilities page (/tools) from the services provided, an attacker can exploit the Quick File Uploader (/tools/upload.html) page and upload PHP executable files that results in remote code execution as the web server user.

tags | exploit, remote, web, php, code execution, file upload
SHA-256 | fa62960bd924cddf506938c32939980f302594aab73a39733f1fa032b8d06b7f
FRITZ!Box 7.20 DNS Rebinding Protection Bypass
Posted Oct 19, 2020
Site redteam-pentesting.de

FRITZ!Box versions 7.20 and below suffer from a DNS rebinding protection bypass vulnerability.

tags | exploit, bypass
advisories | CVE-2020-26887
SHA-256 | f59e4853f424ea55e8c1c1a3dab0047ccbf8355b370da9daa74a1c16ce3910de
HiSilicon Video Encoder Buffer Overflow / Denial Of Service
Posted Oct 19, 2020
Authored by Alexei Kojenov

HiSilicon Video Encoder suffers from an unauthenticated RTSP buffer overflow vulnerability that can cause a denial of service condition.

tags | exploit, denial of service, overflow
advisories | CVE-2020-24214
SHA-256 | 054f4279dcc34fbe0b4cdad449a92669a39411bc6a4b267d596b6a41acf1b278
Red Hat Security Advisory 2020-4274-01
Posted Oct 19, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-4274-01 - The Apache Commons Collections library provides new interfaces, implementations, and utilities to extend the features of the Java Collections Framework. Issues addressed include a code execution vulnerability.

tags | advisory, java, code execution
systems | linux, redhat
advisories | CVE-2015-7501
SHA-256 | 1ef42f7638f6920c5f6747fbe4f6004c8c8d8f1a64e67f89d158eca94035a425
Jenkins 2.63 Sandbox Bypass
Posted Oct 19, 2020
Authored by dmw0ng

Jenkins version 2.63 suffers from a sandbox bypass vulnerability.

tags | exploit, bypass
advisories | CVE-2019-1003030
SHA-256 | ccdda4d633e906d159b3fb007dd5d46967f0b0fc3e8f033a0e07df0b6acc06e4
ReQuest Serious Play F3 Media Server 7.0.3 Denial Of Service
Posted Oct 19, 2020
Authored by LiquidWorm | Site zeroscience.mk

ReQuest Serious Play F3 Media Server version 7.0.3 suffers from a denial of service vulnerability. The device can be shutdown or rebooted by an unauthenticated attacker when issuing one HTTP GET request.

tags | exploit, web, denial of service
SHA-256 | cf6cb66fd8b400426649eb60f038de9dc52118e329404d5b144fc8cfe1957dff
HiSilicon Video Encoder Backdoor Password
Posted Oct 19, 2020
Authored by Alexei Kojenov

HiSilicon Video Encoder allows for full administrative access via a backdoor password. Versions affected are vendor specific.

tags | exploit
advisories | CVE-2020-24215
SHA-256 | dad3b25e442de546e872a7c92c276c593c79415ddcc20135aeba9dd94bdd1c02
Red Hat Security Advisory 2020-4272-01
Posted Oct 19, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-4272-01 - Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Issues addressed include HTTP request smuggling and buffer overflow vulnerabilities.

tags | advisory, web, overflow, javascript, vulnerability
systems | linux, redhat
advisories | CVE-2020-15095, CVE-2020-8116, CVE-2020-8201, CVE-2020-8252
SHA-256 | 29719787a1b0926acad2bfb7e01e582e869c669f6241cc4be24b52b7015b5789
HiSilicon Video Encoder Malicious Firmware Code Execution
Posted Oct 19, 2020
Authored by Alexei Kojenov

HiSilicon Video Encoder suffers from a remote code execution vulnerability via an unauthenticated upload of malicious firmware. Versions affected are vendor specific.

tags | exploit, remote, code execution
advisories | CVE-2020-24217
SHA-256 | 384e22525b81d6f4822dbfd6fa1cdc9aecf7027e3c101cb17860228413f1a996
ReQuest Serious Play F3 Media Server 7.0.3 Debug Log Disclosure
Posted Oct 19, 2020
Authored by LiquidWorm | Site zeroscience.mk

ReQuest Serious Play F3 Media Server version 7.0.3 suffers from a debug log disclosure vulnerability. An unauthenticated attacker can visit the message_log page and disclose the webserver's Python debug log file containing system information, credentials, paths, processes and command arguments running on the device.

tags | exploit, python
SHA-256 | 0fbc2cc8b46cbf660401bfc4a29db49857b0c0f434b0de72a2139aea851956e9
HiSilicon Video Encoder Command Injection
Posted Oct 19, 2020
Authored by Alexei Kojenov

HiSilicon Video Encoder suffers from a remote command injection vulnerability. Versions affected are vendor specific.

tags | exploit, remote
advisories | CVE-2020-24217
SHA-256 | aafacb19bd515d145364bc7d88da7249a61ab2490442a5ff54b6a6e8292dab6d
ReQuest Serious Play Media Player 3.0 File Disclosure / Path Traversal
Posted Oct 19, 2020
Authored by LiquidWorm | Site zeroscience.mk

ReQuest Serious Play Media Player version 3.0 suffers from an unauthenticated file disclosure vulnerability when input passed through the file parameter in tail.html and file.html script is not properly verified before being used to read web log files. This can be exploited to disclose contents of files from local resources.

tags | exploit, web, local
SHA-256 | 465156c9985b8c137b90a25769ac41ad2cef65b909db65c3555fdf2adb71992b
HiSilicon Video Encoder 1.97 File Disclosure / Path Traversal
Posted Oct 19, 2020
Authored by Alexei Kojenov

HiSilicon Video Encoder versions up to 1.97 suffer from a path traversal vulnerability that allows for file disclosure.

tags | exploit, file inclusion
advisories | CVE-2020-24219
SHA-256 | 91b0358f4f356a41132c0c5394b117b7e04588a9da733688c0943a0b218519e3
Chrome XRSystem::FocusedFrameChanged and FocusController::NotifyFocusChangedObservers Use-After-Free
Posted Oct 19, 2020
Authored by Google Security Research, Glazvunov

Chrome suffers from a use-after-free vulnerability in XRSystem::FocusedFrameChanged and FocusController::NotifyFocusChangedObservers.

tags | exploit
advisories | CVE-2020-6551
SHA-256 | f869e7e675f674a19dd25b7967b0d30bef64c85fd536bf14e5014c96666164b9
TinyMCE 5 HTML Injection
Posted Oct 19, 2020
Authored by Vincent666 ibn Winnie

TinyMCE 5 suffers from an html injection vulnerability.

tags | exploit
SHA-256 | f4606ee42af326a27a988314b90ddeb0afd39eb8873424891cf40300433ed9ce
Online Job Portal 1.0 Cross Site Scripting
Posted Oct 19, 2020
Authored by Akiner Kisa

Online Job Portal version 1.0 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | fc009528ffd6e562b5280a440b5853a0da6db32d553a271faac90421979a795e
OX App Suite / OX Documents 7.10.3 XSS / Server-Side Request Forgery
Posted Oct 19, 2020
Authored by Martin Heiland, Zeeshan Khalid, Sreejith Krishnan R, MOGWAI LABS, notoriousrip

OX App Suite and OX Documents versions 7.10.3 and some prior versions suffer from information exposure, server-side request forgery, and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2020-15002, CVE-2020-15003, CVE-2020-15004
SHA-256 | 4fa6c054c00387a832592e2040a5da296d518180b40ccda03e95e88b581e3a1d
Online Discussion Forum Site 1.0 Cross Site Scripting
Posted Oct 19, 2020
Authored by j5oh

Online Discussion Forum Site version 1.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | a95ccf42f8900f6dc839575525800d5a2904d74707cd7714eba2741d090e0487
Online Student's Management System 1.0 Shell Upload
Posted Oct 19, 2020
Authored by Akiner Kisa

Online Student's Management System version 1.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
SHA-256 | a16e90fe5b2e6f0e4283f3e44ce290169c288351710dbe90650d33d348316694
QRadar RemoteJavaScript Deserialization
Posted Oct 19, 2020
Authored by Securify B.V.

A Java deserialization vulnerability exists in the QRadar RemoteJavaScript Servlet. An authenticated user can call one of the vulnerable methods and cause the Servlet to deserialize arbitrary objects. An attacker can exploit this vulnerability by creating a specially crafted (serialized) object, which amongst other things can result in a denial of service, change of system settings, or execution of arbitrary code. This issue was successfully verified on QRadar Community Edition version 7.3.1.6 (7.3.1 Build 20180723171558).

tags | exploit, java, denial of service, arbitrary
advisories | CVE-2020-4280
SHA-256 | 0f8533fd0513dc351a0c6bb51c862f6156842187d3e72a38a9b78ea74a771878
Nagios XI 5.7.3 SQL Injection
Posted Oct 19, 2020
Authored by Matthew Aberegg

Nagios XI version 5.7.3 suffers from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
SHA-256 | 82b5072b097cfc9ee8e14516de519e5f967e2c631a1db0b0f42f75a586287ae2
Page 1 of 2
Back12Next

File Archive:

May 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    44 Files
  • 2
    May 2nd
    5 Files
  • 3
    May 3rd
    11 Files
  • 4
    May 4th
    0 Files
  • 5
    May 5th
    0 Files
  • 6
    May 6th
    28 Files
  • 7
    May 7th
    3 Files
  • 8
    May 8th
    4 Files
  • 9
    May 9th
    54 Files
  • 10
    May 10th
    12 Files
  • 11
    May 11th
    0 Files
  • 12
    May 12th
    0 Files
  • 13
    May 13th
    17 Files
  • 14
    May 14th
    11 Files
  • 15
    May 15th
    17 Files
  • 16
    May 16th
    13 Files
  • 17
    May 17th
    22 Files
  • 18
    May 18th
    0 Files
  • 19
    May 19th
    0 Files
  • 20
    May 20th
    17 Files
  • 21
    May 21st
    18 Files
  • 22
    May 22nd
    7 Files
  • 23
    May 23rd
    111 Files
  • 24
    May 24th
    27 Files
  • 25
    May 25th
    0 Files
  • 26
    May 26th
    0 Files
  • 27
    May 27th
    6 Files
  • 28
    May 28th
    0 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close