exploit the possibilities
Showing 1 - 23 of 23 RSS Feed

Files from Jakub Palaczynski

First Active2015-06-12
Last Active2020-07-06
RSA IG+L Aveksa 7.1.1 Remote Code Execution
Posted Jul 6, 2020
Authored by Jakub Palaczynski, Lukasz Plonka

RSA IG+L Aveksa version 7.1.1 suffers from a remote code execution vulnerability due to an authorization bypass issue.

tags | exploit, remote, code execution
advisories | CVE-2019-3759
MD5 | 7f8a7faeaf6a30052a2f2e03d4e71999
IBM Bigfix Platform 9.5.9.62 Arbitary File Upload / Code Execution
Posted Oct 7, 2019
Authored by Jakub Palaczynski

IBM Bigfix Platform version 9.5.9.62 suffers from an arbitrary file upload vulnerability as root that can achieve remote code execution.

tags | exploit, remote, arbitrary, root, code execution, file upload
advisories | CVE-2019-4013
MD5 | 8ae1f789332dbd08c91e2e0e13536381
CheckPoint Endpoint Security Client / ZoneAlarm Privilege Escalation
Posted Oct 7, 2019
Authored by Jakub Palaczynski

CheckPoint Endpoint Security VPN versions E80.87 Build 986009514 and below and ZoneAlarm versions 15.4.062.17802 and below suffer from a privilege escalation vulnerability.

tags | exploit
advisories | CVE-2019-8452
MD5 | fd86a2b33bd764d8ab972baf53b83fca
Brocade Network Advisor 14.4.1 Unauthenticated Remote Code Execution
Posted May 23, 2019
Authored by Jakub Palaczynski

Brocade Network Advisor version 14.4.1 unauthenticated remote code execution exploit.

tags | exploit, remote, code execution
advisories | CVE-2018-6443
MD5 | 27580dd22c30dfce8d4db02e5434166a
Loadbalancer.org Enterprise VA MAX Cross Site Scripting
Posted Nov 2, 2018
Authored by Jakub Palaczynski

Loadbalancer.org Enterprise VA MAX versions prior to 8.3.3 suffer from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-18864
MD5 | 65a1623a9831a6211f8a981576dc6289
Royal TS/X Information Disclosure
Posted Nov 2, 2018
Authored by Jakub Palaczynski

Royal TS/X suffer from an information disclosure vulnerability. Versions that addressed this issue are Royal TSX (for macOS) 3.3.1 released on 2018-09-13 and Royal TS (for Windows) 4.3.60728 released on 2018-07-28.

tags | exploit, info disclosure
advisories | CVE-2018-18865
MD5 | 6b1c38de2392e49aa7ef8b0d81ea21f9
Loadbalancer.org Enterprise VA MAX 8.3.2 Remote Code Execution
Posted Oct 31, 2018
Authored by Jakub Palaczynski

Loadbalancer.org Enterprise VA MAX version 8.3.2 suffers from a code execution vulnerability.

tags | exploit, code execution
MD5 | 3b75b6e41ec6f5f7612096db9d4dd574
CA Release Automation NiMi 6.5 Remote Command Execution
Posted Sep 19, 2018
Authored by Jakub Palaczynski, Maciej Grabiec

CA Release Automation NiMi version 6.5 suffers from a remote command execution vulnerability.

tags | exploit, remote
advisories | CVE-2018-15691
MD5 | ff45e0057873b44374cc8a9edbcfabbd
CA Release Automation Code Execution
Posted Aug 31, 2018
Authored by Ken Williams, Jakub Palaczynski, Maciej Grabiec | Site www3.ca.com

CA Technologies Support is alerting customers to a potential risk with CA Release Automation. A vulnerability exists that can allow an attacker to potentially execute arbitrary code. The vulnerability has a high risk rating and concerns insecure deserialization of a specially crafted serialized object, which can allow an attacker to potentially execute arbitrary code.

tags | advisory, arbitrary
advisories | CVE-2018-15691
MD5 | 692472172e7ba35b88ea1105d50b881e
Dell EMC ECOM XML External Entity Injection
Posted Apr 26, 2018
Authored by Jakub Palaczynski | Site emc.com

The Dell EMC Common Object Manager (ECOM) component used in multiple Dell EMC products is affected by a XML External Entity (XXE) Injection vulnerability that may potentially be exploited by malicious users to compromise the affected system.

tags | advisory, xxe
MD5 | 7dab4d7ace5e05c27d3d81c8b2326fc4
Meinberg LANTIME Web Configuration Utility 6.16.008 Authentication Bypass
Posted Dec 13, 2017
Authored by Jakub Palaczynski

Meinberg LANTIME Web Configuration Utility version 6.16.008 suffers from an authentication bypass vulnerability.

tags | exploit, web, bypass
advisories | CVE-2017-16787
MD5 | c9529fb287c20dc6b7600d4cb6aeb966
Meinberg LANTIME Web Configuration Utility 6.16.008 Arbitrary File Upload
Posted Dec 13, 2017
Authored by Jakub Palaczynski

Meinberg LANTIME Web Configuration Utility version 6.16.008 suffers from an arbitrary file upload vulnerability.

tags | exploit, web, arbitrary, file upload
advisories | CVE-2017-16788
MD5 | cea75b62b1121f93f0200e9c1039ce2e
Meinberg LANTIME Web Configuration Utility 6.16.008 Arbitrary File Read
Posted Dec 13, 2017
Authored by Jakub Palaczynski

Meinberg LANTIME Web Configuration Utility version 6.16.008 suffers from an arbitrary file read vulnerability.

tags | exploit, web, arbitrary
advisories | CVE-2017-16786
MD5 | 936472311cac9ef43b96368a13aa0968
SmartBear SoapUI 5.3.0 Remote Code Execution Via Deserialization
Posted Oct 5, 2017
Authored by Jakub Palaczynski

SmartBear SoapUI version 5.3.0 suffers from a remote code execution vulnerability via deserialization.

tags | exploit, remote, code execution
MD5 | 30d35779c848aacb185006763fc22835
OpenText Documentum Administrator / Webtop XXE Injection
Posted Sep 27, 2017
Authored by Jakub Palaczynski, Pawel Gocyla

OpenText Documentum Administrator version 7.2.0180.0055 and Documentum Webtop version 6.8.0160.0073 suffer from XML external entity injection vulnerabilities.

tags | exploit, vulnerability, xxe
advisories | CVE-2017-14526, CVE-2017-14527
MD5 | 0cf5e2fc80eb45dd8b9bba4f36f8f1b5
OpenText Documentum Administrator / Webtop Open Redirection
Posted Sep 27, 2017
Authored by Jakub Palaczynski

OpenText Documentum Administrator version 7.2.0180.0055 and Documentum Webtop version 6.8.0160.0073 suffer from an open redirection vulnerability.

tags | exploit
advisories | CVE-2017-14524, CVE-2017-14525
MD5 | 6f1d71c20b10167ef7e933c29c03e1f4
Astaro Security Gateway 7 Remote Code Execution
Posted Sep 15, 2017
Authored by Jakub Palaczynski, Maciej Grabiec

Astaro Security Gateway 7 suffers from a remote code execution vulnerability.

tags | exploit, remote, code execution
advisories | CVE-2017-6315
MD5 | 593db61c13a32607441358ca66907051
WSO2 SOA Enablement Server XML External Entity Injection
Posted Jul 13, 2016
Authored by Jakub Palaczynski, Pawel Gocyla

WSO2 SOA Enablement Server for Java/6.6 build SSJ-6.6-20090827-1616 suffers from an XML external entity injection vulnerability.

tags | exploit, java, xxe
MD5 | 3e5d3ae69a6baac7273853cae43b2c8a
WebSVN 2.3.3 Cross Site Scripting
Posted Feb 22, 2016
Authored by Jakub Palaczynski

WebSVN version 2.3.3 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2016-2511
MD5 | 1535c280076d01c4d53124517ea8fc1c
Apache James Server 2.3.2 Arbitrary Command Execution
Posted Oct 1, 2015
Authored by Jakub Palaczynski

Apache James Server version 2.3.2 suffers from an arbitrary command execution vulnerability.

tags | advisory, arbitrary
MD5 | 757a48d6275b629b17bea8337370a644
Thomson Reuters FATCA Local File Inclusion
Posted Aug 12, 2015
Authored by Jakub Palaczynski

Thomson Reuters FATCA versions below 5.2 suffer from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
advisories | CVE-2015-5952
MD5 | e2cf9765fa566c4a759132b196a4831b
Thomson Reuters FATCA Arbitrary File Upload
Posted Aug 8, 2015
Authored by Jakub Palaczynski

Thomson Reuters FATCA suffers from an arbitrary file upload vulnerability that can result in command execution.

tags | advisory, arbitrary, file upload
advisories | CVE-2015-5951
MD5 | 29f2d2137785ac259e5162881b3ab98a
HP WebInspect 10.4 XML External Entity
Posted Jun 12, 2015
Authored by Jakub Palaczynski

HP WebInspect versions 7.x, 8.x, 9.x, and 10.0 through 10.4 suffer from an XML external entity vulnerability.

tags | exploit, xxe
advisories | CVE-2015-2125
MD5 | 83df9347b4144f3dc5ec49faef846253
Page 1 of 1
Back1Next

File Archive:

August 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    3 Files
  • 2
    Aug 2nd
    2 Files
  • 3
    Aug 3rd
    32 Files
  • 4
    Aug 4th
    22 Files
  • 5
    Aug 5th
    15 Files
  • 6
    Aug 6th
    19 Files
  • 7
    Aug 7th
    6 Files
  • 8
    Aug 8th
    1 Files
  • 9
    Aug 9th
    2 Files
  • 10
    Aug 10th
    27 Files
  • 11
    Aug 11th
    0 Files
  • 12
    Aug 12th
    0 Files
  • 13
    Aug 13th
    0 Files
  • 14
    Aug 14th
    0 Files
  • 15
    Aug 15th
    0 Files
  • 16
    Aug 16th
    0 Files
  • 17
    Aug 17th
    0 Files
  • 18
    Aug 18th
    0 Files
  • 19
    Aug 19th
    0 Files
  • 20
    Aug 20th
    0 Files
  • 21
    Aug 21st
    0 Files
  • 22
    Aug 22nd
    0 Files
  • 23
    Aug 23rd
    0 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close