exploit the possibilities
Showing 1 - 14 of 14 RSS Feed

Files Date: 2015-05-14

Apache Tomcat Security Manager Bypass
Posted May 14, 2015
Authored by Mark Thomas | Site tomcat.apache.org

Malicious web applications could use expression language to bypass the protections of a Security Manager as expressions were evaluated within a privileged code section. This issue only affects installations that run web applications from untrusted sources. Apache Tomcat versions 8.0.0-RC1 to 8.0.15, 7.0.0 to 7.0.57, and 6.0.0 to 6.0.43 are affected.

tags | advisory, web, bypass
advisories | CVE-2014-7810
MD5 | 410d6bc8ebb05d4a1ec751f0d6ef088b
Loxone Smart Home XSS / DoS / Access Control
Posted May 14, 2015
Authored by Johannes Greil | Site sec-consult.com

Loxone Smart Home versions prior to firmware 6.4.5.12 suffer from flaws including denial of service, cross site scripting, credential theft, header injection, and control of arbitrary devices.

tags | exploit, denial of service, arbitrary, xss
MD5 | d4e07a69ec7d67e3df705784c34ec43e
Wireshark Heap Overflow
Posted May 14, 2015
Authored by Hanno Boeck | Site hboeck.de

Wireshark versions prior to 1.12.5 suffer from a heap overflow vulnerability.

tags | advisory, overflow
advisories | CVE-2015-3815
MD5 | e948ec9f69141043f623a5219b4195ec
Websense Content Gateway 7.8.x Explicit Trust
Posted May 14, 2015
Authored by Steve Shockley

Websense Content Gateway versions 7.8.x explicitly trusts compromised certificate authorities.

tags | advisory
MD5 | a7ae4a4559c51edcfcb554af3e16c9a8
phpMyAdmin 4.4.6 Man-In-The-Middle
Posted May 14, 2015
Authored by Maksymilian Arciemowicz

phpMyAdmin version 4.4.6 suffers from a man-in-the-middle vulnerability when reaching out to github's API.

tags | advisory
advisories | CVE-2015-3903
MD5 | 81e9e5fd359dc67b1c3ad8ee81cdc874
iFTP 2.21 Buffer Overflow
Posted May 14, 2015
Authored by dogo h@ck

iFTP version 2.21 buffer overflow crash proof of concept exploit.

tags | exploit, overflow, proof of concept
MD5 | 56237ed87e4d8866c00bb04593aecb6b
WordPress Media File Manager Advanced 1.1.5 XSS / SQL Injection
Posted May 14, 2015
Authored by Evex

WordPress Media File Manager Advanced plugin versions 1.1.5 and below suffer from cross site scripting, various modification, and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | e5849963c6d758d7f286b844b11e96a8
VideoCharge 3.18.4.04 Buffer Overflow
Posted May 14, 2015
Authored by evil_comrade | Site softpedia.com

VideoCharge version 3.18.4.04 buffer overflow proof of concept.

tags | exploit, overflow, proof of concept
MD5 | 1f4dc5ac978c546de287bbdb2d338b0e
Seditio CMS SQL Injection
Posted May 14, 2015
Authored by Ashiyane Digital Security Team

Seditio CMS suffers from a remote SQL injection vulnerability.

tags | advisory, remote, sql injection
MD5 | d143debcc3bc47b91a30489ae92a0e2f
BisonWare FTP Server 3.5 Buffer Overflow
Posted May 14, 2015
Authored by Bikash Dash

BisonWare FTP Server version 3.5 buffer overflow proof of concept exploit for Windows XP SP3.

tags | exploit, advisory, overflow, proof of concept
systems | windows, xp
MD5 | ec4659ff1a9d0d6b28187c539bb255aa
WordPress Contact Form To Email Plugin CSRF / XSS
Posted May 14, 2015
Authored by Ashiyane Digital Security Team

WordPress Contact Form To Email Plugin suffers from cross site request forgery and cross site scripting vulnerabilities.

tags | advisory, vulnerability, xss, csrf
MD5 | 80d72d61c11f1f3c99cabce220c21b34
Webfactory N&P CMS Arbitrary File Upload
Posted May 14, 2015
Authored by Ashiyane Digital Security Team | Site n-p.at

Webfactory N&P CMS suffers from an arbitrary file upload vulnerability. Note that this advisory has site-specific information.

tags | advisory, arbitrary, file upload
MD5 | 9663504c28b9be88852d170649bf5a15
Ubuntu Security Notice USN-2602-1
Posted May 14, 2015
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 2602-1 - Jesse Ruderman, Mats Palmgren, Byron Campen, Steve Fink, Gary Kwong, Andrew McCreight, Christian Holler, Jon Coppeard, and Milan Sreckovic discovered multiple memory safety issues in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service via application crash, or execute arbitrary code with the privileges of the user invoking Firefox. Atte Kettunen discovered a buffer overflow during the rendering of SVG content with certain CSS properties in some circumstances. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code with the privileges of the user invoking Firefox. Various other issues were also addressed.

tags | advisory, denial of service, overflow, arbitrary
systems | linux, ubuntu
advisories | CVE-2015-2708, CVE-2015-2709, CVE-2015-2710, CVE-2015-2711, CVE-2015-2712, CVE-2015-2713, CVE-2015-2715, CVE-2015-2716, CVE-2015-2717, CVE-2015-2718
MD5 | 3282c630a6faa38fae5e9c33e74fcdf7
Debian Security Advisory 3260-1
Posted May 14, 2015
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3260-1 - Multiple security issues have been found in Iceweasel, Debian's version buffer overflows and use-after-frees may lead to the execution of arbitrary code, privilege escalation or denial of service.

tags | advisory, denial of service, overflow, arbitrary
systems | linux, debian
advisories | CVE-2011-3079, CVE-2015-0797, CVE-2015-2708, CVE-2015-2710, CVE-2015-2713, CVE-2015-2716
MD5 | f6ff08fc1f0e8a11377434033ca0622d
Page 1 of 1
Back1Next

File Archive:

February 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Feb 1st
    22 Files
  • 2
    Feb 2nd
    9 Files
  • 3
    Feb 3rd
    2 Files
  • 4
    Feb 4th
    15 Files
  • 5
    Feb 5th
    50 Files
  • 6
    Feb 6th
    24 Files
  • 7
    Feb 7th
    15 Files
  • 8
    Feb 8th
    6 Files
  • 9
    Feb 9th
    1 Files
  • 10
    Feb 10th
    1 Files
  • 11
    Feb 11th
    22 Files
  • 12
    Feb 12th
    25 Files
  • 13
    Feb 13th
    16 Files
  • 14
    Feb 14th
    32 Files
  • 15
    Feb 15th
    15 Files
  • 16
    Feb 16th
    10 Files
  • 17
    Feb 17th
    2 Files
  • 18
    Feb 18th
    27 Files
  • 19
    Feb 19th
    32 Files
  • 20
    Feb 20th
    15 Files
  • 21
    Feb 21st
    17 Files
  • 22
    Feb 22nd
    12 Files
  • 23
    Feb 23rd
    0 Files
  • 24
    Feb 24th
    0 Files
  • 25
    Feb 25th
    0 Files
  • 26
    Feb 26th
    0 Files
  • 27
    Feb 27th
    0 Files
  • 28
    Feb 28th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close