what you don't know can hurt you
Showing 1 - 25 of 53 RSS Feed

Files Date: 2012-05-02

Baby Gekko CMS 1.1.5c Cross Site Scripting
Posted May 2, 2012
Authored by LiquidWorm | Site zeroscience.mk

Baby Gekko CMS version 1.1.5c suffers from multiple stored cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | a7a92f9fa3d1fdd70e94259940700198
HP Security Bulletin HPSBMU02772 SSRT100603
Posted May 2, 2012
Authored by HP | Site hp.com

HP Security Bulletin HPSBMU02772 SSRT100603 - Potential security vulnerabilities have been identified with HP System Health Application and Command Line Utilities for Linux. The vulnerabilities could be exploited remotely resulting in execution of arbitrary code. Revision 1 of this advisory.

tags | advisory, arbitrary, vulnerability
systems | linux
advisories | CVE-2012-2000
MD5 | ef3361eb4857eb307df155604c8d1bb4
Drupal cctags 6.x / 7.x Cross Site Scripting
Posted May 2, 2012
Authored by Michael Hess, Greg Knaddison | Site drupal.org

Drupal cctags third party module versions 6.x and 7.x suffer from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | 809b73d91726600cd8268c192c41d169
Drupal Glossify Internal Links Auto SEO 6.x Cross Site Scripting
Posted May 2, 2012
Authored by Andrei Turcanu | Site drupal.org

Drupal Glossify Internal Links Auto SEO third party module version 6.x suffers from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | 65ddfcd11fd4cce7575e23f3145c4073
Mountain Internet CMS Cross Site Scripting
Posted May 2, 2012
Authored by Am!r, BHG Security Center | Site irist.ir

Mountain Internet CMS suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | d9a7a9dcb571a4d4868db54aed4a8515
Drupal Taxonomy Grid 6.x Cross Site Scripting
Posted May 2, 2012
Authored by Dylan Tack | Site drupal.org

Drupal Taxonomy Grid third party module version 6.x suffers from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | 3c73c522317ff592c4f922171522bd18
PluXml 5.1.5 Local File Inclusion
Posted May 2, 2012
Authored by High-Tech Bridge SA | Site htbridge.com

PluXml version 5.1.5 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
advisories | CVE-2012-2227
MD5 | 24506b94088b147968c5fcc640eac771
HP Security Bulletin HPSBMU02771 SSRT100558
Posted May 2, 2012
Authored by HP | Site hp.com

HP Security Bulletin HPSBMU02771 SSRT100558 - Potential security vulnerabilities have been identified with HP SNMP Agents for Linux. The vulnerabilities could be exploited remotely resulting in cross site scripting (XSS) and URL redirection. Revision 1 of this advisory.

tags | advisory, vulnerability, xss
systems | linux
advisories | CVE-2012-2001, CVE-2012-2002
MD5 | 26ff86360df2688c8fe9694b46ff8919
Drupal Addressbook 6.x XSS / CSRF / SQL Injection
Posted May 2, 2012
Authored by Michael Hess | Site drupal.org

Drupal Addressbook third party module version 6.x suffers from cross site request forgery, cross site scripting, and remote SQL injection vulnerabilities.

tags | advisory, remote, vulnerability, xss, sql injection, csrf
MD5 | 7e2a51bb06bdaaa05fbbfcbd0ddbd81d
Drupal Node Gallery 6.x Cross Site Request Forgery
Posted May 2, 2012
Authored by Andrew Berry | Site drupal.org

Drupal Node Gallery third party module version 6.x suffers from a cross site request forgery vulnerability.

tags | advisory, csrf
MD5 | ca0e2bf4cb92c25ceacfa290223ff3c0
HP Security Bulletin HPSBMU02770 SSRT100848
Posted May 2, 2012
Authored by HP | Site hp.com

HP Security Bulletin HPSBMU02770 SSRT100848 - Potential security vulnerabilities have been identified with HP Insight Management Agents for Windows Server. The vulnerabilities could be exploited remotely resulting in cross site request forgery (CSRF), cross site scripting (XSS), URL redirection, unauthorized modification, and Denial of Service (DoS). Revision 1 of this advisory.

tags | advisory, denial of service, vulnerability, xss, csrf
systems | windows
advisories | CVE-2012-2003, CVE-2012-2004, CVE-2012-2005, CVE-2012-2006
MD5 | 45fd6681a71b053808dba6cbfc591495
php-decoda 3.x Cross Site Scripting
Posted May 2, 2012
Site redteam-pentesting.de

RedTeam Pentesting discovered a cross site scripting vulnerability in the PHP markup parser Decoda. This allows attackers that should be restricted to the markup supported by Decoda to specify a JavaScript event handler for an iframe tag. Depending on the usage of Decoda, this allows attackers to execute JavaScript code in the context of other users in a web application that uses Decoda. php-decoda versions 3.x prior to 3.3.3 are affected.

tags | exploit, web, php, javascript, xss
MD5 | 9fed0a3a99c0ef05a51231bbdbb6ed36
iGuard Security Access Control System Cross Site Scripting
Posted May 2, 2012
Authored by Usman Saeed

iGuard Security Access Control System suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | c08d7ce7a2b1f694b3a7c4c3ecf91a82
ExoPHPDesk 1.2.1 SQL Injection
Posted May 2, 2012
Authored by L3b-r1'z

ExoPHPDesk version 1.2.1 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
MD5 | 187885d09785dc3c46d432ecd981f140
Microsoft Windows XP Win32k.sys Denial Of Service
Posted May 2, 2012
Authored by Lufeng Li

Microsoft Windows XP Win32k.sys local kernel denial of service exploit.

tags | exploit, denial of service, kernel, local
systems | windows, xp
MD5 | 15bb2fb0c8febb7fb470ee9b29096508
Debian Security Advisory 2463-1
Posted May 2, 2012
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2463-1 - Ivano Cristofolini discovered that insufficient security checks in Samba's handling of LSA RPC calls could lead to privilege escalation by gaining the "take ownership" privilege.

tags | advisory
systems | linux, debian
advisories | CVE-2012-2111
MD5 | 25937b35288ea42ff96246d8b936a48d
Ubuntu Security Notice USN-1436-1
Posted May 2, 2012
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1436-1 - Matthew Hall discovered that Libtasn1 incorrectly handled certain large values. An attacker could exploit this with a specially crafted ASN.1 structure and cause a denial of service, or possibly execute arbitrary code.

tags | advisory, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2012-1569
MD5 | 86f698b5592eaa11dc0bc8b17bd06ca6
OpenConf 4.11 Blind SQL Injection
Posted May 2, 2012
Authored by EgiX

OpenConf versions 4.11 and below suffer from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2012-1002
MD5 | 3722f19707b232a265eea89bb25971b4
oclHashcat+ Advanced GPU Hash Cracking Utility 32-Bit 0.08
Posted May 2, 2012
Authored by dropdead | Site hashcat.net

oclHashcat+ Advanced GPU hash cracking utility that includes the World's fastest md5crypt and phpass crackers and has the first GPGPU-based rule engine. Focuses on highly iterated modern hashes, single dictionary-based attacks, and more. 32-bit version.

Changes: Various speed changes, kernel additions, and other improvements.
tags | cracker
MD5 | dcde8aa7329ff6b17b50c572f430c1de
oclHashcat+ Advanced GPU Hash Cracking Utility 64-Bit 0.08
Posted May 2, 2012
Authored by dropdead | Site hashcat.net

oclHashcat+ Advanced GPU hash cracking utility that includes the World's fastest md5crypt and phpass crackers and has the first GPGPU-based rule engine. Focuses on highly iterated modern hashes, single dictionary-based attacks, and more. 64-bit version.

Changes: Various speed changes, kernel additions, and other improvements.
tags | cracker
MD5 | a9eb1b1302e39fea48b70a27125ab7b4
Packet Storm New Exploits For April, 2012
Posted May 2, 2012
Authored by Todd J. | Site packetstormsecurity.com

This archive contains all of the 310 exploits added to Packet Storm in April, 2012.

tags | exploit
systems | linux
MD5 | bcc076c0dd5ed52131ad3ee1ec2912cb
Mandriva Linux Security Advisory 2012-067
Posted May 2, 2012
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2012-067 - A vulnerability has been found and corrected in Samba. Security checks were incorrectly applied to the Local Security Authority CreateAccount, OpenAccount, AddAccountRights and RemoveAccountRights allowing any authenticated user to modify the privileges database. The updated packages have been patched to correct this issue.

tags | advisory, local
systems | linux, mandriva
advisories | CVE-2012-2111
MD5 | 2c8d3d249d4dbb08ff134684f8632757
Symantec pcAnywhere Remote Code Execution
Posted May 2, 2012
Authored by Edward Torkington | Site ngssoftware.com

Symantec pcAnywhere versions 12.5 and below are vulnerable to a remote code execution vulnerability. A flaw exists in the authentication component listening on TCP port 5631 which does not sufficiently validate user-submitted data.

tags | exploit, remote, tcp, code execution
MD5 | c24f427797e9d4d39ee88c13a70c3e2a
Symantec pcAnywhere Insecure File Permissions / Privilege Escalation
Posted May 2, 2012
Authored by Edward Torkington | Site ngssoftware.com

Symantec pcAnywhere suffers from an insecure file permissions vulnerability that allows for local privilege escalation.

tags | exploit, local
MD5 | b1284fffd7587da0785b2cb3d11df17e
Reverse Engineering Malware Part 1
Posted May 2, 2012
Authored by Arunpreet Singh

Whitepaper called Reverse Engineering Malware Part 1.

tags | paper
MD5 | 5a024a46d9813b832462a13a9362ba84
Page 1 of 3
Back123Next

File Archive:

August 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    10 Files
  • 2
    Aug 2nd
    8 Files
  • 3
    Aug 3rd
    2 Files
  • 4
    Aug 4th
    1 Files
  • 5
    Aug 5th
    15 Files
  • 6
    Aug 6th
    79 Files
  • 7
    Aug 7th
    16 Files
  • 8
    Aug 8th
    11 Files
  • 9
    Aug 9th
    10 Files
  • 10
    Aug 10th
    0 Files
  • 11
    Aug 11th
    6 Files
  • 12
    Aug 12th
    26 Files
  • 13
    Aug 13th
    15 Files
  • 14
    Aug 14th
    19 Files
  • 15
    Aug 15th
    52 Files
  • 16
    Aug 16th
    11 Files
  • 17
    Aug 17th
    1 Files
  • 18
    Aug 18th
    2 Files
  • 19
    Aug 19th
    18 Files
  • 20
    Aug 20th
    19 Files
  • 21
    Aug 21st
    17 Files
  • 22
    Aug 22nd
    5 Files
  • 23
    Aug 23rd
    0 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close