Oxwall suffers from an authenticated arbitrary PHP code execution. The vulnerability is caused due to the improper verification of uploaded files in '/admin/settings/user' script thru the 'avatar' and 'bigAvatar' POST parameters. This can be exploited to execute arbitrary PHP code by uploading a malicious PHP script file with '.php5' extension (to bypass the '.htaccess' block rule) that will be stored in '/ow_userfiles/plugins/base/avatars/' directory. Version 1.7.0 (builds 7907 and 7906) are affected.
8c841d9fd35b8ea44852d334bfc0cbfb91d113810cf27954d9f28bd0fe47a749
Oxwall version 1.7.0 (builds 7907 and 7906) suffer from cross site request forgery and cross site scripting vulnerabilities.
34546a5be05a8197c0ae4879533d170e5c4a9b004a6b0c51de251d8dcc6cfb19
HP Security Bulletin HPSBGN02936 - A potential security vulnerability has been identified with HP and H3C VPN Firewall Module Products. The vulnerability could be remotely exploited resulting in a Denial of Service (DoS). Revision 1 of this advisory.
edff2d81ce7184365529aef787166593faca72b38d334fdef41d69d33eb4d493
This is a very thorough cheatsheet for using SQLmap.
ddc97c7300247d96dea29d50c29d669f4ea5e85011b11619ce9658f9642b3ae4
This python script port scans a host using a redis server.
e34e7469c343ec4c195957f541a7b939f348e4592e0efa5781b15ab3d1c6083e
Parallels Tools version 9.0 for Windows suffers from an unquoted search path local privilege escalation vulnerability.
4ac561e0a8ae43976d960ffd7ca304c4850b8d9c8ae4062502ad7e6f64ca3b20
This python script parses the Manifest.mbdb binary database file from iTunes Backup and prints CSV output.
00948cd9ec05d0f8cce9a5a8d032ae719d7500423c9432e6280010936d75eaa2
The Ground Zero Summit (G0S) 2014 Call For Papers has been announced. It will take place November 13th through the 16th, 2014 in New Delhi.
c02e17c904e25b586337adeb4e003360b4ff3222641904017d48172a23e777c6
Web Encryption Extension (WEE) suffers from an authentication bypass vulnerability.
d5595fa91a8fa0538252e28f43e88473d0efbfa67e816fb5451770506195f0b3
ZeroCMS version 1.0 suffers from a persistent cross site scripting vulnerability.
909ebd6b36ef74dee3a5d9bdee2d1d0b598e85a27c2cf26579452bf3c12b75af
Red Hat Security Advisory 2014-0949-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. It was found that the Linux kernel's ptrace subsystem allowed a traced process' instruction pointer to be set to a non-canonical memory address without forcing the non-sysret code path when returning to user space. A local, unprivileged user could use this flaw to crash the system or, potentially, escalate their privileges on the system. Note: The CVE-2014-4699 issue only affected systems using an Intel CPU.
f9777ca1631aa2e4c1e414fb55781fb71e7081b5f670f58256119195823e51da
Debian Linux Security Advisory 2991-1 - Martin Holst Swende discovered a flaw in the way chunked requests are handled in ModSecurity, an Apache module whose purpose is to tighten the Web application security. A remote attacker could use this flaw to bypass intended mod_security restrictions by using chunked transfer coding with a capitalized Chunked value in the Transfer-Encoding HTTP header, allowing to send requests containing content that should have been removed by mod_security.
0825c96504b99d210fe961acdb714473b46a1f7fcddf8251e31b0490e8e42c0c
Debian Linux Security Advisory 2990-1 - It was discovered that the web interface in CUPS, the Common UNIX Printing System, incorrectly validated permissions on rss files and directory index files. A local attacker could possibly use this issue to bypass file permissions and read arbitrary files, possibly leading to a privilege escalation.
cc938fc7d54d51a015c06e68ed74d219f09c0baf6016e28dce18fb4e2629a93b
Gentoo Linux Security Advisory 201407-5 - Multiple vulnerabilities have been found in OpenSSL, possibly allowing remote attackers to execute arbitrary code. Versions less than 1.0.1h-r1 are affected.
058715fbe6887e5fa7531493f741e2281a8b6fbd10beffa54560903e427c61b1
DirPHP version 1.0 suffers from a local file inclusion vulnerability.
f922f10049cb2b15a1b16614078725aebb5d95d2cdee5216b779aaa91992d8b9
Barracuda Networks Spam and Virus Firewall version 5.1.3 suffers from a cross site scripting vulnerability.
fd6bc76304668027f8977a257f29b78b7d5fd39378c30f51b54a32ea8719b644
Android's SDK suffers from a SQL injection vulnerability in the delete() method.
046033dbaaf5bdd27428cd7cdb0cfd8935c69d769ad6e6b0e0901db8c882e245
CMSimple version 4.4.4 suffers from code execution, default credential, and remote file inclusion vulnerabilities.
546f3b040627c929621993bc0ed2e5a06d948532cc8351e131db507ae36d5b75
MasterCard.com.au suffers from an open redirect vulnerability.
17091aa154924d37cfd73e3daf265786342f19af4f9ee46ad81527ff34d612aa
WordPress Slider Revolution Responsive plugin versions 4.1.4 and below suffer from an arbitrary file download vulnerability.
5741a1911337aab8b63be960a0944a5df6cd526dcc7be9097e32d2f40cfaa290
Sagem F@st 3304-V1 suffers from a denial of service vulnerability.
089e8d0a65adc5f8eab0b71bb5f705b88968a278bc59b169bca15e150f1b2b50
Some products from dtSearch Corporation suffer from DLL hijacking vulnerabilities.
87e83a726c488205e1c94f35efd7cb24908ceba7d6b5cee6a82f172f67229fee
WordPress Lead Octopus plugin versions prior to 1.1.1 suffer from a remote SQL injection vulnerability. Note that this finding houses site-specific data. NOTE: The author of this plugin has contacted Packet Storm and claims they have fixed this issue as of 2014/12/07. The fixed version is 1.1.1.
e229e4737c7358e8d3d774eb912c332444859671ff6cfb1f926797bc8f4fcf09
WordPress FBGorilla plugin suffers from a remote SQL injection vulnerability. Note that this finding houses site-specific data.
f89f508dfe6ffe796d290addc918b30d1491a26d310f6cc72ac228fda1c72c98