This archive contains all of the 118 exploits added to Packet Storm in September, 2022.
e8769c7d7fbd55f5a041781a53024d1c91b5564634f5d62fd852af01b6828895Joomla DJ-Classifieds Ads extension version 3.9 suffers from a cross site scripting vulnerability.
1cde118b09606acd47773c379d060b0cbcbfeca41bf971d607da87d9db0f8edcjCart for OpenCart version 3.0.3.19 suffers from a cross site scripting vulnerability.
732a57cc81c74805251a58502dd9451e1d15ef4116a399486077e5c4234521d1Joomla JoomRecipe extension version 4.2.2 suffers from a cross site scripting vulnerability.
2f09ff681b48eb9529ff6f4efee9c227b1a65ef31e45ffbefa7c5149edf26917A remote code execution vulnerability exists in qdPM versions 9.1 and below. An attacker can upload a malicious PHP code file via the profile photo functionality by leveraging a path traversal vulnerability in the users['photop_preview'] delete photo feature thus allowing bypass of .htaccess protection. NOTE: this issue exists because of an incomplete fix for CVE-2015-3884.
41d2d18aa9196d7f57810fe954d8362f8c6f3662e5ba2a143d334cd07ac9b371Joomla AdsManager extension version 3.2.0 suffers from a remote SQL injection vulnerability.
d94efabfad9904e592ec82124c03316f4ce8b774ae57879750a98a1445884262Bus Pass Management System version 1.0 suffers from a cross site scripting vulnerability.
54b5f2852b454991cb45a80382823090c9ab28550870d5b5a1a6ae83964d87e3Online Examination System version 1.0 suffers from a remote SQL injection vulnerability.
dba8c93e85cd1df6195d39d4a331df0a884b158c86b28ffa00bd3dea43e7b6baJoomla EDocman extension version 1.23.3 suffers from a cross site scripting vulnerability.
7b56a9d176668a085432fd6441efba2f1cb355a86dd6f94e9c5fcdce3437fd1eOnline Examination System version 1.0 suffers from a cross site scripting vulnerability.
2cedda0df4347ed510cf540f0c12e96dc76e73743d9ba1ef37fba000b2d31b53This Metasploit module utilizes the Mobile Mouse Server by RPA Technologies, Inc protocol to deploy a payload and run it from the server. This module will only deploy a payload if the server is set without a password (default). Tested against 3.6.0.4, the current version at the time of module writing.
35ce38a49d631a1847c797e9146b16df6ce4723bdc80f1fe1d1a02f833e0ab88An issue was discovered in the Linux kernel through version 5.18.9. A type confusion bug in nft_set_elem_init (leading to a buffer overflow) could be used by a local attacker to escalate privileges. The attacker can obtain root access, but must start with an unprivileged user namespace to obtain CAP_NET_ADMIN access. The issue exists in nft_setelem_parse_data in net/netfilter/nf_tables_api.c.
a48b50f226770ad9be34695226967d12509d7dd73ec5b350a5c71eafda86cc6bEShop Joomla Shopping-Cart extension version 3.6.0 suffers from a cross site scripting vulnerability.
d656a0742b906b47a0b4ec2711f61383d9c25d00858b324982b9899aefaf1fdaMotopress Hotel Booking Lite plugin version 4.4.2 suffers from a persistent cross site scripting vulnerability.
3ed48165602f4bd9548ae2c2a60d166d4e4c761edf4ac75c034e6792d95ba5bbCOVESA versions 2.18.8 and below suffer from heap buffer over-read and null pointer dereference vulnerabilities.
548515ca72e9a559204cae299150309e86e1f034ccca3a9cd876a5da99d81eb2Online Birth Certificate Management System version 1.0 suffers from a cross site scripting vulnerability.
943388058f90bc4b22c687ef0d6cbdb5a64f64c8d68d43bb23f0b86408b86d92Online Birth Certificate Management System version 1.0 suffers from a persistent cross site scripting vulnerability.
7e9852e1ba3b10ed9809857eace8d6e330d1f9d7306d8b2d80c0851d85229f86Online Birth Certificate Management System version 1.0 suffers from an insecure direct object reference vulnerability.
d518fb678e05f322e7641da9649d676bbd4181439b71880505b5b152205524bbOnline Birth Certificate Management System version 1.0 suffers from a cross site request forgery vulnerability.
f90076f01c3d533b4fccbc2387bf165114d9246cfe28d87c6be0ae171a022afeFood Ordering Management System version 1.0 suffers from a remote SQL injection vulnerability.
1be2c696b62c411f0a88c3819a1d4653e0f042e7aa59018ccd5596555ca02a4bThe WiFi Mouse (Mouse Server) from Necta LLC contains an authentication bypass as the authentication is completely implemented entirely on the client side. By utilizing this vulnerability, is possible to open a program on the server (cmd.exe in our case) and type commands that will be executed as the user running WiFi Mouse (Mouse Server), resulting in remote code execution. Tested against versions 1.8.3.4 (current as of module writing) and 1.8.2.3.
a1eb49c803eef32a7d3986d02c20457c3afa4cb25fe942b90918d6d5bcceb6e6Veritas Backup Exec Agent supports multiple authentication schemes and SHA authentication is one of them. This authentication scheme is no longer used within Backup Exec versions, but had not yet been disabled. An attacker could remotely exploit the SHA authentication scheme to gain unauthorized access to the BE Agent and execute an arbitrary OS command on the host with NT AUTHORITY\SYSTEM or root privileges depending on the platform. The vulnerability presents in 16.x, 20.x and 21.x versions of Backup Exec up to 21.2 (or up to and including Backup Exec Remote Agent revision 9.3).
5d2a9879ee25f3f36daab21dabc7454caa668fe4871c215806df28dda8ea3890Backdoor.Win32.Augudor.b malware suffers from a code execution vulnerability.
eb63fba65d43437a287680fff71157dd2127d980055e141a70d67d2a9e75bbe9WordPress Forym plugin version 1.5.7 suffers from a cross site scripting vulnerability.
9098a88f216244d26aece5715f65327ef4cb3938af59970db2d4b6054763daddWordPress Sabai Discuss plugin version 1.4.13 suffers from a cross site scripting vulnerability.
89f5ed0fd301c5179d5c7e7b897151915e046831ba89d38f7fe464fece6e2463
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed