exploit the possibilities
Showing 1 - 25 of 107,534 RSS Feed

Files

Microsoft Windows Task Scheduler Local Privilege Escalation
Posted Jul 19, 2019
Authored by Social Engineering Neo

Microsoft Windows Task Scheduler suffers from a local privilege escalation vulnerability. The Windows MMC auto-elevates members of the 'administrators' group via the GUI and MMC snap-ins (via mmc.exe) automatically elevate without prompting UAC potentially leading to unintentional elevation of privilege.

tags | exploit, local
systems | windows
MD5 | 8e6e723a39a4d2907bdf7a5b25c884e6
MAPLE Computer WBT SNMP Administrator 2.0.195.15 Buffer Overflow
Posted Jul 19, 2019
Authored by sasaga92

MAPLE Computer WBT SNMP Administrator version 2.0.195.15 remote buffer overflow exploit with egghunter.

tags | exploit, remote, overflow
MD5 | 264d4bba8bff62a4e99bb6090af82f9b
fuelCMS 1.4.1 Remote Code Execution
Posted Jul 19, 2019
Authored by 0xd0ff9

fuelCMS versions 1.4.1 and below suffer from a remote code execution vulnerability.

tags | exploit, remote, code execution
advisories | CVE-2018-16763
MD5 | a5a4dc9ae500263d43df8a50510e2e75
Web Ofisi E-Ticaret 3 SQL Injection
Posted Jul 19, 2019
Authored by Ahmet Umit Bayram

Web Ofisi E-Ticaret version 3 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, web, sql injection
MD5 | 7437ac5aa2847a7b983ed6607274391b
Web Ofisi Emlak 3 SQL Injection
Posted Jul 19, 2019
Authored by Ahmet Umit Bayram

Web Ofisi Emlak version 3 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, web, sql injection
MD5 | bbaf456b027e33df396413601723412b
Web Ofisi Emlak 2 SQL Injection
Posted Jul 19, 2019
Authored by Ahmet Umit Bayram

Web Ofisi Emlak version 2 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, web, sql injection
MD5 | acb2c38c14f06b7981c22fc021efba3d
Web Ofisi Platinum E-Ticaret 5 SQL Injection
Posted Jul 19, 2019
Authored by Ahmet Umit Bayram

Web Ofisi Platinum E-Ticaret version 5 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, web, sql injection
MD5 | e955a8dea20f701a89460c42b02c090e
REDCap Cross Site Scripting
Posted Jul 19, 2019
Authored by Dylan Garnaud, Alexandre Zanni

REDCap versions prior to 9.1.2 suffer from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2019-13029
MD5 | a514baa5eac983b54a70b38657784e03
Web Ofisi Firma 13 SQL Injection
Posted Jul 19, 2019
Authored by Ahmet Umit Bayram

Web Ofisi Firma version 13 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, web, sql injection
MD5 | 2f9e04f372779e233112abf19aebb546
Web Ofisi Rent A Car 3 SQL Injection
Posted Jul 19, 2019
Authored by Ahmet Umit Bayram

Web Ofisi Rent a Car version 3 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, web, sql injection
MD5 | a5d470c60fe210d7fc74f1549a7e6e81
Web Ofisi Firma Rehberi 1 SQL Injection
Posted Jul 19, 2019
Authored by Ahmet Umit Bayram

Web Ofisi Firma Rehberi version 1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, web, sql injection
MD5 | f92543b358ec74c2815f6389befe02b0
Ubuntu Security Notice USN-4066-1
Posted Jul 19, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4066-1 - It was discovered that libmspack incorrectly handled certain CHM files. A remote attacker could possibly use this issue to access sensitive information.

tags | advisory, remote
systems | linux, ubuntu
advisories | CVE-2019-1010305
MD5 | 6800260250ac2328cef66a5e824412f6
Ubuntu Security Notice USN-4065-1
Posted Jul 18, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4065-1 - It was discovered that Squid incorrectly handled Digest authentication. A remote attacker could possibly use this issue to cause Squid to crash, resulting in a denial of service. It was discovered that Squid incorrectly handled Basic authentication. A remote attacker could use this issue to cause Squid to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 19.04. Various other issues were also addressed.

tags | advisory, remote, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2019-12525, CVE-2019-12527, CVE-2019-12529
MD5 | 4f76b96ab8a7b06f1886fa584c06000c
Wireshark Analyzer 3.0.3
Posted Jul 18, 2019
Authored by Gerald Combs | Site wireshark.org

Wireshark is a GTK+-based network protocol analyzer that lets you capture and interactively browse the contents of network frames. The goal of the project is to create a commercial-quality analyzer for Unix and Win32 and to give Wireshark features that are missing from closed-source sniffers.

Changes: A vulnerability has been addressed. Various other updates.
tags | tool, sniffer, protocol
systems | windows, unix
advisories | CVE-2019-13619
MD5 | e945d76a57db2c3e6cf776f95da2cf0e
Microsoft Windows RPCSS Activation Kernel Security Callback Privilege Escalation
Posted Jul 18, 2019
Authored by James Forshaw, Google Security Research

On Microsoft Windows, the RPCSS Activation Kernel RPC server's security callback can be bypassed resulting in elevation of privilege.

tags | exploit, kernel
systems | windows
advisories | CVE-2019-1089
MD5 | c4819f99e884719a97eddb52654d624b
WordPress OneSignal 1.17.5 Cross Site Scripting
Posted Jul 18, 2019
Authored by LiquidWorm | Site zeroscience.mk

WordPress OneSignal plugin version 1.17.5 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | 19cd11fce2ebe3bf42676b53160a66cb
Ubuntu Security Notice USN-4064-1
Posted Jul 18, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4064-1 - A sandbox escape was discovered in Thunderbird. If a user were tricked in to installing a malicious language pack, an attacker could exploit this to gain additional privileges. Multiple security issues were discovered in Thunderbird. If a user were tricked in to opening a specially crafted website in a browsing context, an attacker could potentially exploit these to cause a denial of service, bypass same origin restrictions, conduct cross-site scripting attacks, spoof origin attributes, or execute arbitrary code. Various other issues were also addressed.

tags | advisory, denial of service, arbitrary, spoof, xss
systems | linux, ubuntu
advisories | CVE-2019-11709, CVE-2019-11715, CVE-2019-11717, CVE-2019-11719, CVE-2019-11729, CVE-2019-11730, CVE-2019-9811
MD5 | f7be91863a97abc792600ed7d274b78d
Ubuntu Security Notice USN-4063-1
Posted Jul 17, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4063-1 - Nils Emmerich discovered that LibreOffice incorrectly handled LibreLogo scripts. If a user were tricked into opening a specially crafted document, a remote attacker could cause LibreOffice to execute arbitrary code. Matei "Mal" Badanoiu discovered that LibreOffice incorrectly handled stealth mode. Contrary to expectations, bullet graphics could be retrieved from remote locations when running in stealth mode. Various other issues were also addressed.

tags | advisory, remote, arbitrary
systems | linux, ubuntu
advisories | CVE-2019-9848, CVE-2019-9849
MD5 | 5c4a3cb496c551255388e2750ed2e624
Oracle Siebel CRM 19.0 Cross Site Scripting
Posted Jul 17, 2019
Authored by Sarath Nair

Oracle Siebel CRM version 19.0 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | 4a88161473af34c0bd9555142c5d7a79
Ubuntu Security Notice USN-4059-2
Posted Jul 17, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4059-2 - USN-4059-1 and USN-3557-1 fixed several vulnerabilities in Squid. This update provides the corresponding update for Ubuntu 12.04 ESM. Louis Dion-Marcil discovered that Squid incorrectly handled certain Edge Side Includes responses. A malicious remote server could possibly cause Squid to crash, resulting in a denial of service. Various other issues were also addressed.

tags | advisory, remote, denial of service, vulnerability
systems | linux, ubuntu
advisories | CVE-2018-1000024, CVE-2018-1000027, CVE-2019-13345
MD5 | d94434b55f2ed5a67ffc830571769e16
MAPLE Computer WBT SNMP Administrator 2.0.195.15 Buffer Overflow
Posted Jul 17, 2019
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

MAPLE Computer WBT SNMP Administrator version 2.0.195.15 suffers from a buffer overflow vulnerability that allows for code execution.

tags | exploit, overflow, code execution
advisories | CVE-2019-13577
MD5 | a6d1442ffd46e1f782c5c9c9d20d026e
Debian Security Advisory 4483-1
Posted Jul 17, 2019
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4483-1 - Two security issues have been discovered in LibreOffice.

tags | advisory
systems | linux, debian
advisories | CVE-2019-9848, CVE-2019-9849
MD5 | 8a8647cc7bb2c4ae00c94ccdad86b50e
Huawei HG530 Reboot / Restore Authentication Bypass
Posted Jul 17, 2019
Authored by Raki Ben Hamouda

Huawei HG530 suffers from unauthenticated remote reboot and restore vulnerabilities.

tags | exploit, remote, vulnerability
MD5 | 960066e7bdcc835fbc6e47444eb6a973
WinMPG iPod Convert 3.0 Denial Of Service
Posted Jul 17, 2019
Authored by stresser

WinMPG iPod Convert version 3.0 Register flow denial of service proof of concept exploit.

tags | exploit, denial of service, proof of concept
MD5 | bee17e5fa15fbe4821c7b222ab4fad83
Falco 0.16.0
Posted Jul 16, 2019
Authored by Sysdig | Site sysdig.org

Sysdig falco is a behavioral activity monitoring agent that is open source and comes with native support for containers. Falco lets you define highly granular rules to check for activities involving file and network activity, process execution, IPC, and much more, using a flexible syntax. Falco will notify you when these rules are violated. You can think about falco as a mix between snort, ossec and strace.

Changes: Improved rule loading performance by optimizing lua parsing paths to avoid expensive pattern matches. Remove an unused cmake file. Cleaned up error reporting to provide more meaningful error messages along with context when loading rules files. Various other bug fixes and improvements.
tags | tool, intrusion detection
systems | unix
MD5 | e97e07c0482d1ab6301265e9d94365ba
Page 1 of 4,302
Back12345Next

File Archive:

July 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    34 Files
  • 2
    Jul 2nd
    15 Files
  • 3
    Jul 3rd
    9 Files
  • 4
    Jul 4th
    8 Files
  • 5
    Jul 5th
    2 Files
  • 6
    Jul 6th
    3 Files
  • 7
    Jul 7th
    1 Files
  • 8
    Jul 8th
    15 Files
  • 9
    Jul 9th
    15 Files
  • 10
    Jul 10th
    20 Files
  • 11
    Jul 11th
    17 Files
  • 12
    Jul 12th
    16 Files
  • 13
    Jul 13th
    2 Files
  • 14
    Jul 14th
    1 Files
  • 15
    Jul 15th
    20 Files
  • 16
    Jul 16th
    27 Files
  • 17
    Jul 17th
    7 Files
  • 18
    Jul 18th
    5 Files
  • 19
    Jul 19th
    12 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close