exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 11 of 11 RSS Feed

Files Date: 2011-08-21

Debian Security Advisory 2297-1
Posted Aug 21, 2011
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2297-1 - Several vulnerabilities have been discovered in Icedove, an unbranded version of the Thunderbird mail/news client.

tags | advisory, vulnerability
systems | linux, debian
advisories | CVE-2011-0084, CVE-2011-2378, CVE-2011-2981, CVE-2011-2982, CVE-2011-2983, CVE-2011-2984
SHA-256 | bf80bb2acbfee25ec2d61f3cea47b4dcc44dfe0a8b8e4b570d6578844a6e66ee
OneFileCMS 1.1.1 Code Execution
Posted Aug 21, 2011
Authored by mr.pr0n

OneFileCMS version 1.1.1 suffers from a remote code execution vulnerability.

tags | exploit, remote, code execution
SHA-256 | 568916ae1bfa0785b4f38ed90417d0bd60f364698078a6fb9c0a9e5a505ebbcd
WordPress UnGallery 1.5.8 File Disclosure
Posted Aug 21, 2011
Authored by Miroslav Stampar

WordPress UnGallery plugin versions 1.5.8 and below suffer from a local file disclosure vulnerability.

tags | exploit, local, info disclosure
SHA-256 | 1cdf69a881bccc8eeaa8b5bbb348a5650b9476b63df300c2e403582932f9dbca
WordPress Block-Spam-By-Math-Reloaded Plugin Bypass
Posted Aug 21, 2011
Authored by Tiago Ferreira, Heyder Andrade | Site metasploit.com

WordPress authentication brute force and user enumeration utility for Metasploit.

tags | exploit
advisories | CVE-2009-2335, OSVDB-55713
SHA-256 | 53dfbc1d57cd5b6f8db8a14f4805dbb9ee5be66043bb48948f6bbf77a879d57d
HP Easy Printer Care XMLSimpleAccessor Class ActiveX Control Remote Code Execution
Posted Aug 21, 2011
Authored by Andrea Micalizzi, juan vazquez | Site metasploit.com

This Metasploit module allows remote attackers to place arbitrary files on a users file system by abusing via Directory Traversal attack the "saveXML" method from the "XMLSimpleAccessor" class in the HP Easy Printer HPTicketMgr.dll ActiveX Control (HPTicketMgr.dll 2.7.2.0). Code execution can be achieved by first uploading the payload to the remote machine embedding a vbs file, and then upload another mof file, which enables Windows Management Instrumentation service to execute the vbs. Please note that this module currently only works for Windows before Vista.

tags | exploit, remote, arbitrary, code execution, activex
systems | windows
advisories | CVE-2011-2404, OSVDB-74510
SHA-256 | 84e0285d988e56bb5f1d65fe424e699563286b8c897e9124e79191ab37a3ba2d
Oracle Secure Backup Authentication Bypass/Command Injection Vulnerability
Posted Aug 21, 2011
Authored by MC | Site metasploit.com

This Metasploit module exploits an authentication bypass vulnerability in login.php. In conjunction with the authentication bypass issue, the 'jlist' parameter in property_box.php can be used to execute arbitrary system commands. This Metasploit module was tested against Oracle Secure Backup version 10.3.0.1.0

tags | exploit, arbitrary, php, bypass
advisories | CVE-2010-0904
SHA-256 | a6b9f81b959d5734b4b0566c794ef98effe3e6416939923022fc0bcd168099f4
Symantec System Center Alert Management System (xfr.exe) Arbitrary Command Execution
Posted Aug 21, 2011
Authored by MC | Site metasploit.com

Symantec System Center Alert Management System is prone to a remote command-injection vulnerability because the application fails to properly sanitize user-supplied input.

tags | exploit, remote
advisories | CVE-2009-1429, OSVDB-54157
SHA-256 | 95f14312377294847b6443cafaea422eaf213f3a09cd52c6d7c601bcebfb6aee
Symantec System Center Alert Management System (hndlrsvc.exe) Arbitrary Command Execution
Posted Aug 21, 2011
Authored by MC | Site metasploit.com

Symantec System Center Alert Management System is prone to a remote command-injection vulnerability because the application fails to properly sanitize user-supplied input.

tags | exploit, remote
advisories | OSVDB-66807
SHA-256 | 232e78f8e6e5a5694a725d2f5a4b7ce93a4095155e0009240604e9174b7559f1
OneFileCMS 1.1.1 Cross Site Request Forgery / Cross Site Scripting
Posted Aug 21, 2011
Authored by mr.pr0n

OneFileCMS version 1.1.1 suffers from cross site request forgery and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf
SHA-256 | a1620e9581fa597f9b0bb5213157d28b206572797c7ad1b7886b07efbef3c4d1
MediaFire Cross Site Scripting
Posted Aug 21, 2011
Authored by Codeine

MediaFire suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | e5720e6683905d5be3a308204c542c1d01288ceb234af11b1949135a8f567d85
Dasar-Dasar Keamanan Di WordPress
Posted Aug 21, 2011
Authored by tempe_mendoan | Site devilzc0de.org

This is a basic tutorial on web security with WordPress. Written in Indonesian.

tags | paper, web
SHA-256 | ded0305c58bc063ac61f33521b9077d2d905297a32388dbe1b8c6632649417ee
Page 1 of 1
Back1Next

File Archive:

March 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    16 Files
  • 2
    Mar 2nd
    0 Files
  • 3
    Mar 3rd
    0 Files
  • 4
    Mar 4th
    32 Files
  • 5
    Mar 5th
    28 Files
  • 6
    Mar 6th
    42 Files
  • 7
    Mar 7th
    17 Files
  • 8
    Mar 8th
    13 Files
  • 9
    Mar 9th
    0 Files
  • 10
    Mar 10th
    0 Files
  • 11
    Mar 11th
    15 Files
  • 12
    Mar 12th
    19 Files
  • 13
    Mar 13th
    21 Files
  • 14
    Mar 14th
    38 Files
  • 15
    Mar 15th
    15 Files
  • 16
    Mar 16th
    0 Files
  • 17
    Mar 17th
    0 Files
  • 18
    Mar 18th
    10 Files
  • 19
    Mar 19th
    32 Files
  • 20
    Mar 20th
    46 Files
  • 21
    Mar 21st
    16 Files
  • 22
    Mar 22nd
    13 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    12 Files
  • 26
    Mar 26th
    31 Files
  • 27
    Mar 27th
    19 Files
  • 28
    Mar 28th
    0 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close