what you don't know can hurt you
Showing 1 - 25 of 32 RSS Feed

Files Date: 2012-06-04

PyroCMS 2.1.1 CRLF Injection / Stored Cross Site Scripting
Posted Jun 4, 2012
Authored by LiquidWorm | Site zeroscience.mk

PyroCMS version 2.1.1 suffers from CRLF injection and stored cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | cfd29cf2202ca5e2686469d6fe3e5848
Mod_auth_pubtkt 0.7
Posted Jun 4, 2012
Site neon1.net

mod_auth_pubtkt is a simple Web single sign-on (SSO) solution for Apache. It validates authentication tickets provided by the client in a cookie using public-key cryptography (DSA or RSA). Thus, only the login server that generates the tickets needs to possess the private key, while Web servers can verify tickets given only the public key. The implementation of the login server is left to the user, but an example and a library in PHP are provided with the distribution.

Changes: The public key can be set per directory instead of only globally. The login URL is now optional, and a new TKTAuthBadIPURL option has been added. Furthermore, the module now compiles with Apache 2.4 and includes a Perl ticket generation module.
tags | web, php
systems | unix
MD5 | 4f2634db9c32b63b7f84b0c4a94742d4
ISC BIND 9.x Denial Of Service
Posted Jun 4, 2012
Site isc.org

ISC Security Advisory - The handling of zero length rdata can cause named to terminate unexpectedly.

tags | advisory, denial of service
advisories | CVE-2012-1667
MD5 | 715b9dcf68b1e33d7ccfa1359ac8ac2a
EUSecWest 2012 Call For Papers
Posted Jun 4, 2012
Site eusecwest.com

The seventh annual EUSecWest applied technical security conference - where the eminent figures in the international security industry get together share best practices and technology - will be held in downtown Amsterdam near Leidseplein Square on September 19/20, 2012. The most significant new discoveries about computer network hack attacks and defenses, commercial security solutions, and pragmatic real world security experience will be presented in a series of informative tutorials. This is the Call For Papers.

tags | paper, conference
MD5 | 0fffb2de71f1a4442b2123150810b81a
Zoph 0.9pre2 CSRF / File Disclosure / SQL Injection
Posted Jun 4, 2012
Authored by KedAns-Dz

Zoph version 0.9pre2 suffers from cross site request forgery, remote file disclosure, and remote blind SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection, info disclosure, csrf
MD5 | 0f8ed2ca6b953e104fe8084550f903fe
Mnews 1.1 SQL injection
Posted Jun 4, 2012
Authored by WhiteCollarGroup

Mnews versions 1.1 and below suffer from a remote SQL injection vulnerability in view.php.

tags | exploit, remote, php, sql injection
MD5 | 594e8fef6ae52248c6b071c105be3441
Della CMS SQL Injection
Posted Jun 4, 2012
Authored by Mr.XpR

Della CMS suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 80e95a3ddfda2ed659a2ce815f393105
Sysax 5.60 Create SSL Certificate Buffer Overflow
Posted Jun 4, 2012
Authored by Craig Freyman

Sysax versions 5.60 and below suffer from a buffer overflow vulnerability when creating an SSL certificate.

tags | exploit, overflow
MD5 | 5bdf87defa7d4d11143a81bdce063e64
Xtemplate Shell Upload
Posted Jun 4, 2012
Authored by Th3-Skywalk3r

Xtemplate suffers from a shell upload vulnerability.

tags | exploit, shell
MD5 | 9853a571648d96df98db8e51cbd468be
Hexamail Server 4.4.5 Cross Site Scripting
Posted Jun 4, 2012
Authored by modpr0be

Hexamail Server versions 4.4.5 and below suffer from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | 48ab187117a6905f5336e8ba7299fc8c
Dblog 1.4.1 Insecure Session / Access Bypass
Posted Jun 4, 2012
Authored by L3b-r1'z

Dblog version 1.4.1 suffers from an access bypass vulnerability.

tags | exploit, bypass
MD5 | 08bbdc11d93a242b4b2cb0b5da8cca0e
Msi.com Cross Site Scripting
Posted Jun 4, 2012
Authored by Ryuzaki Lawlet

Msi.com suffers from a cross site scripting vulnerability. The site has not responded to the author's reports regarding the vulnerability.

tags | exploit, xss
MD5 | 64c5dd705d0b796f5719232f731579d8
Webex Eshop Builder SQL Injection
Posted Jun 4, 2012
Authored by Mr.XpR

Webex Eshop Builder suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | b39693dac450c8fc4bd75f4825a427ae
IM Storm SQL Injection
Posted Jun 4, 2012
Authored by AtlasTeam

IM Storm suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | cf2dbca1a9e5a9138599b9834d3f3e2f
Indexu 7 PHP Code Injection
Posted Jun 4, 2012
Authored by L3b-r1'z

Indexu 7 suffers from a remote PHP code injection vulnerability.

tags | exploit, remote, php
MD5 | 80cc70ae4ab210d793bc48ee22dc3d9b
CMS Faethon 1.3.4 SQL Injection
Posted Jun 4, 2012
Authored by AtlasTeam

CMS Faethon version 1.3.4 suffers from a remote SQL injection vulnerability. This is against a very old version of this software.

tags | exploit, remote, sql injection
MD5 | d32cb0f7d4e4d9e3932ba3d817d284e0
Secunia Security Advisory 49379
Posted Jun 4, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Henry Hoggard has discovered two vulnerabilities in the Poll plugin for Vanilla Forums, which can be exploited by malicious users to conduct script insertion attacks.

tags | advisory, vulnerability
MD5 | 9f7421e0366c5b51de2f9b60f1ebc908
Secunia Security Advisory 49383
Posted Jun 4, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Gentoo has issued an update for qt-gui. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library.

tags | advisory, denial of service
systems | linux, gentoo
MD5 | 2271a8455422d5c69afa7b898605aac3
Secunia Security Advisory 49334
Posted Jun 4, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Multiple vulnerabilities have been reported in Bloxx Web Filtering, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to bypass certain security restrictions and conduct cross-site scripting, cross-site request forgery, and script insertion attacks.

tags | advisory, web, vulnerability, xss, csrf
MD5 | 8177c6ba5a3c1d4e3714596e0dd143c1
Secunia Security Advisory 49364
Posted Jun 4, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Debian has issued an update for nut. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
systems | linux, debian
MD5 | 6e717b578ed1059e6794be839f6c233b
Secunia Security Advisory 49338
Posted Jun 4, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in ISC BIND, which can be exploited by malicious people to disclose potentially sensitive information or cause a DoS (Denial of Service).

tags | advisory, denial of service
MD5 | 3e065fadfb60448fed102a64da1f7274
Secunia Security Advisory 49312
Posted Jun 4, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Symfony, which can be exploited by malicious people to conduct session fixation attacks.

tags | advisory
MD5 | 7164676bc3ad23466a8885ae6f187c29
Secunia Security Advisory 49374
Posted Jun 4, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has issued an update for the kernel. This fixes two vulnerabilities, which can be exploited by malicious, local users to potentially gain escalated privileges and by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service, kernel, local, vulnerability
systems | linux, suse
MD5 | 9ca83ebd1c2784a6e1405ddbb27a5349
Secunia Security Advisory 49380
Posted Jun 4, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Henry Hoggard has discovered a vulnerability in Vanilla Forums, which can be exploited by malicious users to conduct script insertion attacks.

tags | advisory
MD5 | 26fc80a8487a584681af87f797cbd0e0
Secunia Security Advisory 49330
Posted Jun 4, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Multiple vulnerabilities have been reported in Piwik, which can be exploited by malicious people to conduct cross-site scripting and cross-site request forgery attacks, disclose potentially sensitive information, and cause a DoS (Denial of Service).

tags | advisory, denial of service, vulnerability, xss, csrf
MD5 | c878422d7b0ca2b4ee774f10ea741ca9
Page 1 of 2
Back12Next

File Archive:

October 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    24 Files
  • 2
    Oct 2nd
    15 Files
  • 3
    Oct 3rd
    7 Files
  • 4
    Oct 4th
    4 Files
  • 5
    Oct 5th
    10 Files
  • 6
    Oct 6th
    1 Files
  • 7
    Oct 7th
    21 Files
  • 8
    Oct 8th
    19 Files
  • 9
    Oct 9th
    5 Files
  • 10
    Oct 10th
    20 Files
  • 11
    Oct 11th
    17 Files
  • 12
    Oct 12th
    4 Files
  • 13
    Oct 13th
    4 Files
  • 14
    Oct 14th
    15 Files
  • 15
    Oct 15th
    19 Files
  • 16
    Oct 16th
    0 Files
  • 17
    Oct 17th
    0 Files
  • 18
    Oct 18th
    0 Files
  • 19
    Oct 19th
    0 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close