what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 16 of 16 RSS Feed

Files Date: 2015-01-23

ManageEngine ServiceDesk 9.0 SQL Injection
Posted Jan 23, 2015
Authored by Muhammed Ahmed Siddiqui | Site rewterz.com

ManageEngine ServiceDesk version 9.0 prior to build 9031 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | c5fe07e7b05786d6f07d6f09a432fc4fea83c7125de5549570e1eaafcc13b2a5
ManageEngine ServiceDesk 9.0 User Enumeration
Posted Jan 23, 2015
Authored by Muhammed Ahmed Siddiqui | Site rewterz.com

ManageEngine ServiceDesk version 9.0 prior to build 9031 suffers from a remote user enumeration vulnerability.

tags | exploit, remote
SHA-256 | b0b6bf9a9dab1ec3d533b6e5cd4cc1c40202b20474bcd7c7949b11077ff22ef3
ManageEngine ServiceDesk Plus 9.0 Privilege Escalation
Posted Jan 23, 2015
Authored by Muhammed Ahmed Siddiqui | Site rewterz.com

ManageEngine ServiceDesk Plus version 9.0 prior to build 9031 suffers from a remote privilege escalation vulnerability due to improper access controls.

tags | exploit, remote
SHA-256 | 1c879d55c033a0142d5afd25967e70e6b4b9946140355cc35138584d329406e7
Hack In The Box 2015 AMS Call For Papers
Posted Jan 23, 2015
Site conference.hitb.org

The Hack In The Box 2015 AMS Call For Papers closes at the end of January. It will be held May 26th through the 29th, 2015 at De Beurs van Berlage, Amsterdam.

tags | paper, conference
SHA-256 | ca24531f98a84457fd6625bab0661ea0ff3c4709f92e9fe52660ec5afbb4d564
ferretCMS 1.0.4-alpha Cross Site Scripting / SQL Injection
Posted Jan 23, 2015
Authored by Steffen Roesemann

ferretCMS version 1.0.4-alpha suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
SHA-256 | e833ccba84d5f20433f71ab680b92585696d02bcf2c559cbe91d1e54827ceb49
SmartCMS 2 Cross Site Scripting
Posted Jan 23, 2015
Authored by Jing Wang

SmartCMS version 2 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2014-9557
SHA-256 | d555b444dbeca536ed18b052a1222905eb7bad519789a5478cf859d96838bbc8
SmartCMS 2 SQL Injection
Posted Jan 23, 2015
Authored by Jing Wang

SmartCMS version 2 suffers from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
advisories | CVE-2014-9558
SHA-256 | e1e15790d42f90cde2cfadfe486a281cb2d46f6ec3aa8cb911ff47fef02976c6
Red Hat Security Advisory 2015-0079-01
Posted Jan 23, 2015
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2015-0079-01 - Oracle Java SE version 7 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. This update fixes several vulnerabilities in the Oracle Java Runtime Environment and the Oracle Java Software Development Kit.

tags | advisory, java, vulnerability
systems | linux, redhat
advisories | CVE-2014-3566, CVE-2014-6585, CVE-2014-6587, CVE-2014-6591, CVE-2014-6593, CVE-2014-6601, CVE-2015-0383, CVE-2015-0395, CVE-2015-0403, CVE-2015-0406, CVE-2015-0407, CVE-2015-0408, CVE-2015-0410, CVE-2015-0412, CVE-2015-0413
SHA-256 | 1e4eb67838f3d02b116ae14de77f7b06c75e052a30e2411763c237dc29b21ad6
Red Hat Security Advisory 2015-0074-01
Posted Jan 23, 2015
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2015-0074-01 - JasPer is an implementation of Part 1 of the JPEG 2000 image compression standard. An off-by-one flaw, leading to a heap-based buffer overflow, was found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code. An unrestricted stack memory use flaw was found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code.

tags | advisory, overflow, arbitrary
systems | linux, redhat
advisories | CVE-2014-8157, CVE-2014-8158
SHA-256 | 767c871e838506d9d4f9cdf7a1f3235d99f9a9298412bdbae9ccced050a4fc3b
Red Hat Security Advisory 2015-0080-01
Posted Jan 23, 2015
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2015-0080-01 - Oracle Java SE version 8 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. This update fixes several vulnerabilities in the Oracle Java Runtime Environment and the Oracle Java Software Development Kit.

tags | advisory, java, vulnerability
systems | linux, redhat
advisories | CVE-2014-3566, CVE-2014-6549, CVE-2014-6585, CVE-2014-6587, CVE-2014-6591, CVE-2014-6593, CVE-2014-6601, CVE-2015-0383, CVE-2015-0395, CVE-2015-0403, CVE-2015-0406, CVE-2015-0407, CVE-2015-0408, CVE-2015-0410, CVE-2015-0412, CVE-2015-0413, CVE-2015-0421, CVE-2015-0437
SHA-256 | 15087d6179c42125f49eacdd2d3db0d4acdfa841b070da99a6f33bd8dbd2c82f
Ubuntu Security Notice USN-2482-1
Posted Jan 23, 2015
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 2482-1 - Alexander Cherepanov discovered that libelf1 incorrectly handled certain filesystem paths while extracting ar archives. An attacker could use this flaw to perform a directory traversal attack on the root directory if the process extracting the ar archive has write access to the root directory.

tags | advisory, root
systems | linux, ubuntu
advisories | CVE-2014-9447
SHA-256 | 0501eb5ac15bf63c79698d578fb24ba1292e1cb67bffeeaf249be1b94aca86dd
Program-O 2.4.6 XSS / LFI / HTTP Response Splitting
Posted Jan 23, 2015
Authored by Paulos Yibelo, Vulnerability Laboratory | Site vulnerability-lab.com

Program-O version 2.4.6 suffers from http response splitting, cross site scripting, and local file inclusion vulnerabilities.

tags | exploit, web, local, vulnerability, xss, file inclusion
SHA-256 | 76658244af3e987274e86b16084fa6ffaf0d26aebcfead558ea9f4ca01983a80
USAA Mobile App Information Disclosure
Posted Jan 23, 2015
Authored by David Longenecker

The USAA Mobile app for Android versions prior to 7.10.1 suffer from an information disclosure vulnerability.

tags | exploit, info disclosure
SHA-256 | 5885b9f88356cacbdd18637c155b3a61531b959d43dbc55fb93a82fdcff79bdf
articleFR CMS 3.0.5 Cross Site Scripting
Posted Jan 23, 2015
Authored by Tien Tran Dinh

articleFR CMS version 3.0.5 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2015-1363
SHA-256 | a7eec6dd3bb01b1d47f2da23b35af63ca219b46a7c1690081c0abac2fbb389cb
Alibaba Cross Site Scripting / Open Redirect
Posted Jan 23, 2015
Authored by Jing Wang

Various Alibaba sites suffer from cross site scripting and open redirect vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 4122adb3397a297f4e601144cc131e86b766b44301d48f154f47babf55aaeed6
ecommerceMajor SQL Injection
Posted Jan 23, 2015
Authored by Manish Tanwar

ecommerceMajor suffers from remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
SHA-256 | 130972cbcc57088872f5ad921761903a21a4ffdef387d6ce66b050a87a8f21e4
Page 1 of 1
Back1Next

File Archive:

July 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    52 Files
  • 2
    Jul 2nd
    0 Files
  • 3
    Jul 3rd
    0 Files
  • 4
    Jul 4th
    11 Files
  • 5
    Jul 5th
    0 Files
  • 6
    Jul 6th
    0 Files
  • 7
    Jul 7th
    0 Files
  • 8
    Jul 8th
    0 Files
  • 9
    Jul 9th
    0 Files
  • 10
    Jul 10th
    0 Files
  • 11
    Jul 11th
    0 Files
  • 12
    Jul 12th
    0 Files
  • 13
    Jul 13th
    0 Files
  • 14
    Jul 14th
    0 Files
  • 15
    Jul 15th
    0 Files
  • 16
    Jul 16th
    0 Files
  • 17
    Jul 17th
    0 Files
  • 18
    Jul 18th
    0 Files
  • 19
    Jul 19th
    0 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close