the original cloud security
Showing 1 - 25 of 48 RSS Feed

Files Date: 2012-02-07

ManageEngine ADManager Plus 5.2 Cross Site Scripting
Posted Feb 7, 2012
Authored by LiquidWorm | Site zeroscience.mk

ManageEngine ADManager Plus version 5.2 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | f6b286aa3015794e92f3c4e1f1f2a07c
Batavi 1.1.2 SQL Injection
Posted Feb 7, 2012
Authored by Onur YILMAZ

Batavi version 1.1.2 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 6c6242fe4f709daf95b46538164408f7
Cyberoam Central Console 2.00.2 Local File Inclusion
Posted Feb 7, 2012
Site vulnerability-lab.com

Cyberoam Central Console version 2.00.2 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | 5a4204574cfa2eecf91742525ae80210
Facebook Profile Sticker SQL Injection
Posted Feb 7, 2012
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

Facebook Profile Sticker suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 0b89275b158dca19039fcd8a0bfc4e61
HP Security Bulletin HPSBMU02736 SSRT100699 2
Posted Feb 7, 2012
Authored by HP | Site hp.com

HP Security Bulletin HPSBMU02736 SSRT100699 2 - Potential security vulnerabilities have been identified with HP Business Availability Center (BAC) and Business Service Management (BSM). The vulnerabilities could be remotely exploited to allow unauthorized access to sensitive information. Revision 2 of this advisory.

tags | advisory, vulnerability
advisories | CVE-2008-3273, CVE-2010-1428, CVE-2010-1429
MD5 | c815e16389c69620217b97507e068cc7
Dinama SMS Service Cross Site Scripting
Posted Feb 7, 2012
Authored by Ivan Montilla Miralles | Site vulnerability-lab.com

Dinama SMS Service suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 845749ded093bb7db0d9d472e236b2cf
eFronts Community++ 3.6.10 Cross Site Scripting
Posted Feb 7, 2012
Authored by Chokri Ben Achor | Site vulnerability-lab.com

eFronts Community++ version 3.6.10 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | b9d174d364c128774e35458cd5d8120c
VolksBank Online Banking Cross Site Scripting / Redirection
Posted Feb 7, 2012
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

VolksBank Online Banking suffers from cross site scripting, open redirection and input validation vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | feac466622f15bbe1764799375e9eb4a
SimpleGroupware 0.742 Cross Site Scripting
Posted Feb 7, 2012
Authored by Stefan Schurtz

SimpleGroupware version 0.742 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | e635da8219ce2cfde53b6a744b05856a
Apache CXF UsernameToken Broken Validation
Posted Feb 7, 2012
Authored by Colm O hEigeartaigh | Site cxf.apache.org

Apache CXF versions 2.4.5 and 2.5.1 fail to validate a WS-Security UsernameToken received as part of the security header of a SOAP request against a WS-SP UsernameToken policy.

tags | advisory
advisories | CVE-2012-0803
MD5 | 9fb0f93b2d03ed155db11f6317e1662a
Fake POP3 Daemon
Posted Feb 7, 2012
Authored by James Stevenson | Site stev.org

This is a compact fake pop3 daemon that logs password attacks.

tags | tool
systems | unix
MD5 | 6f1a11903c57d66bfbf2564e33984ea6
DEF CON 20 Capture The Flag Information
Posted Feb 7, 2012
Authored by The Dark Tangent | Site defcon.org

This is an newsletter that discusses information related to Capture The Flag that will be held at DEF CON 20 this year.

tags | paper, conference
MD5 | 0445982946aa3d0757d6e0be478f625e
Debian Security Advisory 2403-2
Posted Feb 7, 2012
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2403-2 - Stefan Esser discovered that the implementation of the max_input_vars configuration variable in a recent PHP security update was flawed such that it allows remote attackers to crash PHP or potentially execute code.

tags | advisory, remote, php
systems | linux, debian
advisories | CVE-2012-0830
MD5 | ac64d2dec1aeb1720402ce0a0f137168
Ubuntu Security Notice USN-1356-1
Posted Feb 7, 2012
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1356-1 - A flaw was discovered in the XFS filesystem. If a local user mounts a specially crafted XFS image it could potential execute arbitrary code on the system. Chen Haogang discovered an integer overflow that could result in memory corruption. A local unprivileged user could use this to crash the system. A flaw was found in the linux kernels IPv4 IGMP query processing. A remote attacker could exploit this to cause a denial of service. Various other issues were also addressed.

tags | advisory, remote, denial of service, overflow, arbitrary, kernel, local
systems | linux, ubuntu
advisories | CVE-2012-0038, CVE-2012-0044, CVE-2012-0207, CVE-2012-0038, CVE-2012-0044, CVE-2012-0207
MD5 | 6347ecda19b460ba56d66884c67a8ef9
Another File Integrity Checker 2.20
Posted Feb 7, 2012
Authored by Eric Gerbier | Site afick.sourceforge.net

afick is another file integrity checker, designed to be fast and fully portable between Unix and Windows platforms. It works by first creating a database that represents a snapshot of the most essential parts of your computer system. Then a user can run the script to discover all modifications made since the snapshot was taken (i.e. files added, changed, or removed). The configuration syntax is very close to that of aide or tripwire, and a graphical interface is provided.

Changes: SHA-256 and SHA-512 checksum algorithms were added to replace SHA-1 for better security. Output of SHA checksums are now compatible with the output of the sha1sum, sha256sum, and sha512sum commands.
tags | tool, integrity
systems | linux, windows, unix
MD5 | 6fa2d357839fc75138ef2ca287b0ae59
Whitewash 2.0
Posted Feb 7, 2012
Authored by Dmitry Borodaenko

The Whitewash module allows Ruby programs to clean up any HTML document or fragment coming from an untrusted source and to remove all dangerous constructs that could be used for cross-site scripting or request forgery. All HTML tags, attribute names and values, and CSS properties are filtered through a whitelist that defines which names and what kinds of values are allowed; everything that doesn't match the whitelist is removed. The whitelist is provided externally, and the default whitelist is loaded from the whitelist.yaml shipped with Whitewash. The default is the most strict (for example, it does not allow cross-site links to images in IMG tags) and can be considered safe for all uses.

tags | tool, xss, ruby
systems | unix
MD5 | c004def72787e8d8222d7b2e16706e97
Typsoft FTP Server 1.10 Denial Of Service
Posted Feb 7, 2012
Authored by Balazs Makany

Three proof of concept exploits that demonstrate denial of service vulnerabilities in Typsoft FTP server version 1.10.

tags | exploit, denial of service, vulnerability, proof of concept
MD5 | df9286e98ac358e8f0a5ed272a271e60
Flyspray 0.9.9.6 Cross Site Request Forgery
Posted Feb 7, 2012
Authored by Vaibhav Gupta

Flyspray version 0.9.9.6 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | f220df0ca50cb2a18ff33b458ba62739
Ananta Gazelle CMS SQL Injection
Posted Feb 7, 2012
Authored by hackme

Ananta Gazelle CMS suffers from an update statement remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 495d6c380d8bca723eeb27c41bedcd15
PS Design Web Site SQL Injection
Posted Feb 7, 2012
Authored by KatiLhacker

PS Design Web Site suffers from a remote SQL injection vulnerability.

tags | exploit, remote, web, sql injection
MD5 | c9627fa4e33102ed2687b754b6c8bb03
Axiatel.com Cross Site Scripting
Posted Feb 7, 2012
Authored by Atmon3r

Axiatel.com suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | a520422a07da9c83472589afb22e8e69
Secunia Security Advisory 47900
Posted Feb 7, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has issued an update for the kernel. This fixes multiple vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and gain escalated privileges, by malicious, local users in a guest virtual machine to gain escalated privileges, and by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system.

tags | advisory, denial of service, kernel, local, vulnerability
systems | linux, suse
MD5 | cd60be67c6151375ccc62923c511af14
Secunia Security Advisory 47913
Posted Feb 7, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has issued an update for tomcat6. This fixes multiple weaknesses and a vulnerability, which can be exploited by malicious people to bypass certain security restrictions.

tags | advisory
systems | linux, suse
MD5 | ced5d841c9dacdb2394fe313da417d97
Secunia Security Advisory 47871
Posted Feb 7, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in Snort Report, which can be exploited by malicious people to disclose potentially sensitive information.

tags | advisory
MD5 | cf58a471d8ba6740975fceb59ba7b400
Secunia Security Advisory 47874
Posted Feb 7, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in Tube Ace, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, sql injection
MD5 | e8f7212773bace25c2fb63b9ff3a493c
Page 1 of 2
Back12Next

File Archive:

July 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    2 Files
  • 2
    Jul 2nd
    3 Files
  • 3
    Jul 3rd
    15 Files
  • 4
    Jul 4th
    4 Files
  • 5
    Jul 5th
    15 Files
  • 6
    Jul 6th
    15 Files
  • 7
    Jul 7th
    10 Files
  • 8
    Jul 8th
    2 Files
  • 9
    Jul 9th
    10 Files
  • 10
    Jul 10th
    15 Files
  • 11
    Jul 11th
    15 Files
  • 12
    Jul 12th
    19 Files
  • 13
    Jul 13th
    16 Files
  • 14
    Jul 14th
    15 Files
  • 15
    Jul 15th
    3 Files
  • 16
    Jul 16th
    2 Files
  • 17
    Jul 17th
    8 Files
  • 18
    Jul 18th
    11 Files
  • 19
    Jul 19th
    15 Files
  • 20
    Jul 20th
    15 Files
  • 21
    Jul 21st
    15 Files
  • 22
    Jul 22nd
    7 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close