Exploit the possiblities
Showing 1 - 25 of 62 RSS Feed

Files Date: 2011-02-22

Debian Security Advisory 2172-1
Posted Feb 22, 2011
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2172-1 - Several vulnerabilities have been discovered in phpCAS, a CAS client library for PHP. The Moodle course management system includes a copy of phpCAS.

tags | advisory, php, vulnerability
systems | linux, debian
advisories | CVE-2010-2795, CVE-2010-2796, CVE-2010-3690, CVE-2010-3691, CVE-2010-3692
MD5 | ffe31e32df15b161540f5b0e56d0dff2
Ubuntu Security Notice USN-1069-1
Posted Feb 22, 2011
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1069-1 - It was discovered that Mailman did not properly sanitize certain fields, resulting in cross-site scripting (XSS) vulnerabilities. With cross-site scripting vulnerabilities, if a user were tricked into viewing server output during a crafted server request, a remote attacker could exploit this to modify the contents, or steal confidential data, within the same domain.

tags | advisory, remote, vulnerability, xss
systems | linux, ubuntu
advisories | CVE-2010-3089, CVE-2011-0707
MD5 | 14a5661bed2510d4944ff141eb03bc1b
Z-Vote 1.1 SQL Injection
Posted Feb 22, 2011
Authored by High-Tech Bridge SA | Site htbridge.com

Z-Vote Wordpress plugin version 1.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | a07e55430745e5de4fbfde0c1df75e9c
Batavi 1.0 Local File Inclusion
Posted Feb 22, 2011
Authored by AutoSec Tools | Site autosectools.com

A local file inclusion vulnerability in Batavi 1.0 can be exploited to include arbitrary files.

tags | exploit, arbitrary, local, file inclusion
MD5 | 7574ad4484dba6359fb0ff93dfd8cd20
ProQuiz 2 Shell Upload
Posted Feb 22, 2011
Authored by AutoSec Tools | Site autosectools.com

ProQuiz version 2 suffers from a shell upload vulnerability.

tags | exploit, shell
MD5 | 5cd2d3d780ade0f95e65e8fff253d863
CDNVote 0.4.1 SQL Injection
Posted Feb 22, 2011
Authored by High-Tech Bridge SA | Site htbridge.com

CDNVote Wordpress plugin version 0.4.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 60c3e1a573c7f37dabf407ba17469824
Levering XSRF With Apache Web Server And Java Applet
Posted Feb 22, 2011
Authored by Roberto Suggi Liverani | Site security-assessment.com

Whitepaper called Leveraging XSRF with Apache Web Server "Compatibility with older browser" feature and Java Applet.

tags | paper, java, web, csrf
MD5 | 321528cdcfa4440c1d86f8be46836941
Ubuntu Security Notice USN-1068-1
Posted Feb 22, 2011
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1068-1 - Sergey Nizovtsev discovered that Aptdaemon incorrectly filtered certain arguments when using its D-Bus interface. A local attacker could use this flaw to bypass security restrictions and view sensitive information by reading arbitrary files.

tags | advisory, arbitrary, local
systems | linux, ubuntu
advisories | CVE-2011-0725
MD5 | 026901ff859e78cdd30abcdc31b390fe
Vanilla Forums 2.0.17.1 - 2.0.17.5 Cross Site Scripting
Posted Feb 22, 2011
Authored by Aung Khant | Site yehg.net

Vanilla Forums versions 2.0.17.1 through 2.0.17.5 suffer from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 8b332a9a48e2b5259ccacec07cdbc1ab
Mandriva Linux Security Advisory 2011-035
Posted Feb 22, 2011
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2011-035 - The tomboy-panel scripts in GNOME Tomboy 1.5.2 and earlier place a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory. NOTE: vector 1 exists because of an incorrect fix for CVE-2005-4790.2. The updated packages have been patched to correct this issue.

tags | advisory, local, trojan
systems | linux, mandriva
advisories | CVE-2010-4005
MD5 | 2a890d46c480f890c31b7d48a38830a2
Creepy Geolocation Gathering Tool 0.1.8
Posted Feb 22, 2011
Authored by Yiannis Kakavas | Site ilektrojohn.github.com

creepy is an application that allows you to gather geolocation related information about users from social networking platforms and image hosting services. The information is presented in a map inside the application where all the retrieved data is shown, accompanied with relevant information (i.e. what was posted from that specific location) to provide context to the presentation.

Changes: This release adds a feature to export retrieved locations as kmz files (opens in Google Earth and Google Maps). It adds a progress bar for the retrieval process. It adds a help menu.
tags | tool
systems | unix
MD5 | c4d22122ab7b56bfb54bff76f9c5df4a
Batavi 1.0 Cross Site Scripting
Posted Feb 22, 2011
Authored by AutoSec Tools | Site autosectools.com

Batavi version 1.0 suffers from a reflective cross site scripting vulnerability.

tags | exploit, xss
MD5 | 7b956119afd629330558dee8c66f8b74
GD Star Rating 1.9.7 Cross Site Scripting / Path Disclosure
Posted Feb 22, 2011
Authored by High-Tech Bridge SA | Site htbridge.com

GD Star Rating version 1.9.7 suffers from cross site scripting and path disclosure vulnerabilities.

tags | exploit, vulnerability, xss, info disclosure
MD5 | 5f2680f00649c377e4cb7ddc97f6c3d9
Comment Rating 2.9.23 Path Disclosure / SQL Injection
Posted Feb 22, 2011
Authored by High-Tech Bridge SA | Site htbridge.com

Comment Rating version 2.9.23 suffers from path disclosure and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection, info disclosure
MD5 | cc5eed0bf5e55bc1b6f457b9e24c10b1
Starbox 2.0.4 Path Disclosure
Posted Feb 22, 2011
Authored by High-Tech Bridge SA | Site htbridge.com

Starbox version 2.0.4 suffers from a path disclosure vulnerability.

tags | exploit, info disclosure
MD5 | 07df48e942c05cc787dbc6e78bce7d5a
Vote It Up 1.2.2 Path Disclosure
Posted Feb 22, 2011
Authored by High-Tech Bridge SA | Site htbridge.com

Vote It Up version 1.2.2 suffers from a path disclosure vulnerability.

tags | exploit, info disclosure
MD5 | d694a41e679ec83584488b9ec335334c
OWASP AppSec USA 2011 Announcement
Posted Feb 22, 2011
Site appsecusa.org

OWASP AppSec USA 2011 has been announced. The Call For Trainers is now open and the Call For Papers opens March 15, 2011. This event will be held from September 20th through the 21st, 2011 in Minneapolis, Minnesota.

tags | paper, conference
MD5 | c901e41140e8d77ef2afca4d6112c76f
Asterisk Project Security Advisory - AST-2011-002
Posted Feb 22, 2011
Authored by Matthew Nicholson | Site asterisk.org

Asterisk Project Security Advisory - When decoding UDPTL packets, multiple stack and heap based arrays can be made to overflow by specially crafted packets. Systems doing T.38 pass through or termination are vulnerable.

tags | advisory, overflow
MD5 | a0b184b6eeee795867cd9b14fad166b6
C++ Elliptic Curve Cryptography Library 0.14.0
Posted Feb 22, 2011
Site libecc.sourceforge.net

Libecc is a C++ elliptic curve cryptography library that supports fixed-size keys for maximum speed. The goal of this project is to become the first free Open Source library providing the means to generate safe elliptic curves, and to provide an important source of information for anyone with general interest in ECC.

Changes: An anti-aliasing bug was fixed, which is needed when compiling this library with g++ 4.4 or higher. asm clobber bugs were fixed for 32-bit assembly.
tags | library
systems | unix
MD5 | 1b0cc0b1937362d8cef0ed91491afa29
WinMerge 2.12.4 Stack Overflow
Posted Feb 22, 2011
Authored by LiquidWorm | Site zeroscience.mk

WinMerge version 2.12.4 project file handling stack overflow exploit.

tags | exploit, overflow
MD5 | ba996c93faf0a91c19070b1a51466274
ICCGI 2011 Call For Papers
Posted Feb 22, 2011
Site iaria.org

ICCGI 2011 Call For Papers - The topics suggested by the conference can be discussed in term of concepts, state of the art, research, standards, implementations, running experiments, applications, and industrial case studies. Authors are invited to submit complete unpublished papers, which are not under review in any other conference or journal in the following, but not limited to, topic areas. This event will be held from June 20th through the 24th, 2011 in Luxembourg.

tags | paper, conference
MD5 | d8d33ae2cc4aaaf98ff08f9de165dc80
WordPress Uploadify 1.0 Shell Upload
Posted Feb 22, 2011
Authored by b0telh0 | Site gotgeek.com.br

WordPress Uploadify plugin version 1.0 suffers from a shell upload vulnerability.

tags | exploit, shell
MD5 | e22edb690648d2dce622446c62476dbc
Greeklog CMS Blind SQL Injection
Posted Feb 22, 2011
Authored by H3X

Greeklog CMS suffers from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 896b625566c050438e55c0bc15372b48
Course MS 2.1 Local File Inclusion
Posted Feb 22, 2011
Authored by AutoSec Tools | Site autosectools.com

Course MS version 2.1 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | c2a341b3344ce83f736e638e5a9e07c5
Dotproject 2.1.5 SQL Injection / Cross Site Scripting
Posted Feb 22, 2011
Authored by lemlajt

Dotproject version 2.1.5 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | ec95b8e8443e50abd3802143fb0bb011
Page 1 of 3
Back123Next

File Archive:

December 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    15 Files
  • 2
    Dec 2nd
    2 Files
  • 3
    Dec 3rd
    1 Files
  • 4
    Dec 4th
    15 Files
  • 5
    Dec 5th
    15 Files
  • 6
    Dec 6th
    18 Files
  • 7
    Dec 7th
    17 Files
  • 8
    Dec 8th
    15 Files
  • 9
    Dec 9th
    13 Files
  • 10
    Dec 10th
    4 Files
  • 11
    Dec 11th
    41 Files
  • 12
    Dec 12th
    44 Files
  • 13
    Dec 13th
    25 Files
  • 14
    Dec 14th
    10 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close