This Metasploit module exploits a file upload vulnerability in GetSimple CMS. By abusing the upload.php file, a malicious authenticated user can upload an arbitrary file, including PHP code, which results in arbitrary code execution.
b8c3aed643a0768f0b2639792f54c4f3
Gentoo Linux Security Advisory 201409-8 - A vulnerability in libxml2 allows a remote attacker to cause Denial of Service. Versions less than 2.9.1-r4 are affected.
969451c5564bb8de180f786ffa6efe03
Gentoo Linux Security Advisory 201409-7 - A vulnerability in c-icap could result in Denial of Service. Versions less than 0.2.6 are affected.
d2853809ed85f988907823aa7ebdbf88
Gentoo Linux Security Advisory 201409-6 - Multiple vulnerabilities have been found in Chromium, the worst of which can allow remote attackers to cause Denial of Service. Versions less than 37.0.2062.120 are affected.
a7f41cab80e519fe71034a1ea6ab4d96
Gentoo Linux Security Advisory 201409-5 - Multiple vulnerabilities have been found in Adobe Flash Player, the worst of which allows remote attackers to execute arbitrary code. Versions less than 11.2.202.406 are affected.
e361b77805554bdb0261fb739c614ccd
Apple Security Advisory 2014-09-17-7 - Xcode 6.0.1 is now available and addresses a denial of service vulnerability.
dd442435a8762baa3dff1e29314281fc
Apple Security Advisory 2014-09-17-6 - OS X Server 2.2.3 is now available and addresses an arbitrary SQL query execution vulnerability.
083ef4295300e02a3e47869bc8b35216
Apple Security Advisory 2014-09-17-5 - OS X Server 3.2.1 is now available and addresses arbitrary SQL execution, arbitrary javascript execution, and multiple vulnerabilities in PostgreSQL.
46b96ce83e6920723049bf0de2dcb542
Apple Security Advisory 2014-09-17-4 - Safari 6.2 and Safari 7.1 are now available and address credential interception, arbitrary code execution, and data browsing vulnerabilities.
f43207e94e8bde8b0a9a21267314a75f
Apple Security Advisory 2014-09-17-3 - OS X Mavericks 10.9.5 and Security Update 2014-004 are now available and address PHP code execution, Bluetooth API validation, PDF handling, and various other vulnerabilities.
fc28042ffd26443278d5bacc74e2c78e
Debian Linux Security Advisory 3025-2 - The previous update for apt, DSA-3025-1, introduced a regression when file:/// sources are used and those are on a different partition than the apt state directory. This update fixes the regression.
563691138801ac28ee6e3c830e4405de
Debian Linux Security Advisory 3028-1 - Multiple security issues have been found in Icedove, Debian's version of errors and use-after-frees may lead to the execution of arbitrary code or denial of service.
17ce420c5c657a7af9f348217d73062b
Debian Linux Security Advisory 3027-1 - Several security issues have been corrected in multiple demuxers and decoders of the libav multimedia library.
90f90b3b254261eada41aa88b8f400b4
M/Monit versions 3.2.2 and below suffer from multiple cross site request forgery vulnerabilities.
660f77b9a01ac26ca59e3363779bebf7
UFONet is a tool designed to launch DDoS attacks against a target, using open redirection vectors on third party web applications.
b4e7289bfb22e3e6351abee1da4b0438