exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 30 RSS Feed

Files Date: 2012-12-13

OpenDocMan 1.2.6.2 SQL Injection / Access Bypass
Posted Dec 13, 2012
Authored by Kenneth F. Belva

OpenDocMan version 1.2.6.2 suffers from remote SQL injection and multiple access bypass vulnerabilities.

tags | exploit, remote, vulnerability, sql injection, bypass
SHA-256 | b865110065c53e1f31eed37d7378c899a40f17fdecd48dbbcec488cf1491d1be
Addressbook 8.1.24.1 / 8.2.5 Cross Site Scripting
Posted Dec 13, 2012
Authored by Kenneth F. Belva

Addressbook versions 8.1.24.1 and 8.2.5 suffer from a cross site scripting vulnerability in Group Name.

tags | exploit, xss
SHA-256 | 20aebf2bfe9b011017e46733e1177c025ebc2f405f02f295a97fb67315a1919d
MyBB Facebook Profile 2.4 Cross Site Scripting
Posted Dec 13, 2012
Authored by limb0

MyBB Facebook Profile plugin version 2.4 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | b596494df8015a26ec8281a40e0e59804e68ace1412db001cdfc5f9f92f4775e
MyBB MyYoutube 1.0 SQL Injection
Posted Dec 13, 2012
Authored by Zixem

MyBB MyYoutube plugin version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 96237158a6461e3346db891e94efe14ff8eaa4cfef063fddd459847dee10f323
Cisco Wireless Lan Controller 7.2.110.0 XSS / CSRF / DoS
Posted Dec 13, 2012
Authored by Jacob Holcomb

Cisco Wireless Lan Controller version 7.2.110.0 suffers from cross site request forgery, cross site scripting, and denial of service vulnerabilities.

tags | exploit, denial of service, vulnerability, xss, csrf
systems | cisco
SHA-256 | 7f735255a4061458df999f6cd3debd65949064ebec7a5945f03af105fd41ea9f
MyBB DyMy User Agent SQL Injection
Posted Dec 13, 2012
Authored by JoinSe7en

MyBB DyMy User Agent plugin suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | a8a2eb2944aa5dcefd861c252a254b4563f92ce0c1586963e669bcfbf992580d
Front Account 2.3.13 / OpenDocMan 1.2.6.2 Arbitrary HTML Rendering
Posted Dec 13, 2012
Authored by Kenneth F. Belva

Front Account version 2.3.13 and OpenDocMan version 1.2.6.2 render uploaded HTML in the DOM allowing for malicious javascript insertion that can enable cross site scripting attacks.

tags | advisory, javascript, xss
SHA-256 | 39b7dc1d98dc77b0a1fe1263b285315dc66fe88c63545e29291abfda9cf4a8f1
Centreon 2.3.x SQL Injection
Posted Dec 13, 2012
Authored by modpr0be

Centreon versions 2.3.3 through 2.3.9-4 menuXML.php remote blind SQL injection exploit.

tags | exploit, remote, php, sql injection
advisories | CVE-2012-5967
SHA-256 | d04b644c764a41f28eca2c71a041e69645a678273c302fafa28bfe8fac2f9c4a
Secunia Security Advisory 51577
Posted Dec 13, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Red Hat has issued an update for JBoss Enterprise BRMS Platform. This fixes a security issue, which can be exploited by malicious people to bypass certain security restrictions.

tags | advisory
systems | linux, redhat
SHA-256 | 1dcdfc0402231d79198afacf2991d2390d6a3ff111b21adc3e8864118a389096
OpenNHRP NBMA Next Hop Resolution 0.14
Posted Dec 13, 2012
Authored by Timo Teras | Site sourceforge.net

OpenNHRP implements the NBMA Next Hop Resolution Protocol (as defined in RFC 2332). It makes it possible to create a dynamic multipoint VPN Linux router using NHRP, GRE, and IPsec. It aims to be Cisco DMVPN compatible.

Changes: The license has changed to MIT. This release adds minor bugfixes to handle network configuration errors properly (e.g., protocol address routing loops and very low holding times).
tags | tool, encryption, protocol
systems | cisco, linux
SHA-256 | 9a6b992144eed1c0c05118d92e04373cdd4677b6e0ed52e768efbd131da44c82
AdSuck DNS Server 2.5.0
Posted Dec 13, 2012
Authored by Marco Peereboom | Site peereboom.us

Adsuck is a small DNS server that spoofs blacklisted addresses and forwards all other queries. The idea is to be able to prevent connections to undesirable sites such as ad servers, crawlers, etc. It can be used locally, for the road warrior, or on the network perimeter in order to protect local machines from malicious sites.

Changes: Automatically watches for changes to resolv.conf and rereads it when that happens. This removes the need for external stimuli to force the reread (SIGHUP). Refreshes all the hosts files. Starts using libevent2 in favor of libevent.
tags | tool, local, spoof
systems | linux, unix
SHA-256 | 12602ec9249c6c7303f9017bc9074728af63c45abec15b983e47a664d7024263
Mandriva Linux Security Advisory 2012-179
Posted Dec 13, 2012
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2012-179 - CUPS 1.4.4, when running in certain Linux distributions such as Debian GNU/Linux, stores the web interface administrator key in /var/run/cups/certs/0 using certain permissions, which allows local users in the lpadmin group to read or write arbitrary files as root by leveraging the web interface. The updated packages have been patched to correct this issue.

tags | advisory, web, arbitrary, local, root
systems | linux, debian, mandriva
advisories | CVE-2012-5519
SHA-256 | 3b680b5a96b68a442bac1fa6f74b9adc2a6f2273aa4a99e237e89041592f5377
Secunia Security Advisory 51580
Posted Dec 13, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has issued an update for chromium. This fixes multiple vulnerabilities, where two have an unknown impact and others can be exploited by malicious people to compromise a user's system.

tags | advisory, vulnerability
systems | linux, suse
SHA-256 | 831de955048fddbae76987ca1743c8711c1f421aa75e713b81883733ce337a85
Secunia Security Advisory 49929
Posted Dec 13, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been discovered in Adobe Camera Raw Plug-in, which can be exploited by malicious people to compromise a user's system.

tags | advisory, vulnerability
SHA-256 | 56e1d657fb660a3a481a1c7ee890837d2e08c3639023af10d9619746c3cdf244
Secunia Security Advisory 51444
Posted Dec 13, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - REDACTED has reported a vulnerability in N-able N-central, which can be exploited by malicious people to conduct cross-site request forgery attacks.

tags | advisory, csrf
SHA-256 | 79f99bb5412e7a3d22028be08c2618d4c68a1e6b5acfbfa9670827a303ed8158
Secunia Security Advisory 51552
Posted Dec 13, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in UBB.threads, which can be exploited by malicious users to bypass certain security restrictions.

tags | advisory
SHA-256 | ec92bb6cb9cada602dd36d6c1a9725997f3b92905e3e406686d548cdc71d6bde
Secunia Security Advisory 51499
Posted Dec 13, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been discovered in the Tips Of The Day plugin for MyBB, which can be exploited by malicious users to conduct script insertion and SQL injection attacks.

tags | advisory, vulnerability, sql injection
SHA-256 | 798f3a27e8f19095ae773633bea96b879fcca7895ad7b762341dafb2b47a2ea7
Secunia Security Advisory 51568
Posted Dec 13, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Ubuntu has issued an update for apt. This fixes a security issue, which can be exploited by malicious, local users to gain knowledge of potentially sensitive information.

tags | advisory, local
systems | linux, ubuntu
SHA-256 | 575edf2cd5da326b8f0ced9675f93d5f48945127abbea621834c0fadc9affd04
Secunia Security Advisory 51579
Posted Dec 13, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - SUSE has issued an update for libxml2. This fixes a vulnerability, which can be exploited by malicious people to potentially compromise an application using the library.

tags | advisory
systems | linux, suse
SHA-256 | a26e14a65f4e66b476c20b81e5200e6bd63429d72ce7b3a20ecdab85fcd0b81c
Secunia Security Advisory 51532
Posted Dec 13, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Spentera has reported a vulnerability in Centreon, which can be exploited by malicious users to conduct SQL injection attacks.

tags | advisory, sql injection
SHA-256 | fd146a512e280bffd0d171ef887d96c6d0d8aca652856fb5ec304bf2f0acb5a1
Secunia Security Advisory 51533
Posted Dec 13, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been discovered in the Profile Blogs plugin for MyBB, which can be exploited by malicious users to conduct script insertion and SQL injection attacks.

tags | advisory, vulnerability, sql injection
SHA-256 | 77ac3ecb7daedfb5f9cbbf505cabe185bacba37423679bdaff5fdbd0b6a02d32
Secunia Security Advisory 51572
Posted Dec 13, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been reported in IBM Lotus Foundations Start, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to disclose certain sensitive information or compromise a vulnerable system.

tags | advisory, vulnerability
SHA-256 | e64437cc9505131a49e0343624aaa44dbd1557b33e41f9c62795ccae2807d40c
Secunia Security Advisory 51574
Posted Dec 13, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - IBM has acknowledged some vulnerabilities in IBM Rational Publishing Engine, which can be exploited by malicious people to conduct spoofing and cross-site scripting attacks and cause a DoS (Denial of Service).

tags | advisory, denial of service, spoof, vulnerability, xss
SHA-256 | cbe669474389349301435c66576c180d5ba79b5a48b109a4877e7a072035a648
Secunia Security Advisory 51543
Posted Dec 13, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in the Knews Multilingual Newsletters plugin for WordPress, which can be exploited by malicious people to conduct cross-site request forgery attacks.

tags | advisory, csrf
SHA-256 | af0980252d6b2d064ce8ac33752ac51a05b52c927d247339f52dc194247e3d12
Ubuntu Security Notice USN-1662-1
Posted Dec 13, 2012
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1662-1 - It was discovered that APT set inappropriate permissions on the term.log file. A local attacker could use this flaw to possibly obtain sensitive information.

tags | advisory, local
systems | linux, ubuntu
advisories | CVE-2012-0961
SHA-256 | 2df57e24da7e17e710558591d0c5ea6b6d2c14461fe0fbd7ada2c0e00dc760b6
Page 1 of 2
Back12Next

File Archive:

March 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    16 Files
  • 2
    Mar 2nd
    0 Files
  • 3
    Mar 3rd
    0 Files
  • 4
    Mar 4th
    32 Files
  • 5
    Mar 5th
    28 Files
  • 6
    Mar 6th
    42 Files
  • 7
    Mar 7th
    17 Files
  • 8
    Mar 8th
    13 Files
  • 9
    Mar 9th
    0 Files
  • 10
    Mar 10th
    0 Files
  • 11
    Mar 11th
    15 Files
  • 12
    Mar 12th
    19 Files
  • 13
    Mar 13th
    21 Files
  • 14
    Mar 14th
    38 Files
  • 15
    Mar 15th
    15 Files
  • 16
    Mar 16th
    0 Files
  • 17
    Mar 17th
    0 Files
  • 18
    Mar 18th
    10 Files
  • 19
    Mar 19th
    32 Files
  • 20
    Mar 20th
    46 Files
  • 21
    Mar 21st
    16 Files
  • 22
    Mar 22nd
    13 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    12 Files
  • 26
    Mar 26th
    31 Files
  • 27
    Mar 27th
    19 Files
  • 28
    Mar 28th
    42 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close