Twenty Year Anniversary
Showing 1 - 15 of 15 RSS Feed

Files Date: 2016-02-03

Mezzanine 4.1.0 Arbitrary File Upload
Posted Feb 3, 2016
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

Mezzanine version 4.1.0 suffers from an arbitrary file upload vulnerability.

tags | exploit, arbitrary, file upload
MD5 | 4abc63f16a8522495a2d26bdd7e34126
Mezzanine 4.1.0 Cross Site Scripting
Posted Feb 3, 2016
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

Mezzanine version 4.1.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 927d672a2de0b274c02de4dbbcf77273
MailPoet Newsletters 2.6.19 Cross Site Scripting
Posted Feb 3, 2016
Authored by Onur YILMAZ, Omar Kurt | Site netsparker.com

MailPoet Newsletters version 2.6.19 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | b3252f690b3a6d40a07a44947f00edb0
Debian Security Advisory 3465-1
Posted Feb 3, 2016
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3465-1 - Several vulnerabilities have been discovered in OpenJDK, an implementation of the Oracle Java platform, resulting in breakouts of the Java sandbox, information disclosure, denial of service and insecure cryptography.

tags | advisory, java, denial of service, vulnerability
systems | linux, debian
advisories | CVE-2015-7575, CVE-2016-0402, CVE-2016-0448, CVE-2016-0466, CVE-2016-0483, CVE-2016-0494
MD5 | 023f8d4bea9c5c10a0f853babdd668fd
Red Hat Security Advisory 2016-0118-01
Posted Feb 3, 2016
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2016-0118-01 - Red Hat JBoss Operations Network is a Middleware management solution that provides a single point of control to deploy, manage, and monitor JBoss Enterprise Middleware, applications, and services. This JBoss Operations Network 3.3.5 release serves as a replacement for JBoss Operations Network 3.3.4, and includes several bug fixes.

tags | advisory
systems | linux, redhat
advisories | CVE-2015-3253, CVE-2015-7501
MD5 | 5b3fbe237e4e742030602ff8945dd0e9
Ubuntu Security Notice USN-2891-1
Posted Feb 3, 2016
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 2891-1 - Qinghao Tang discovered that QEMU incorrectly handled PCI MSI-X support. An attacker inside the guest could use this issue to cause QEMU to crash, resulting in a denial of service. This issue only affected Ubuntu 14.04 LTS and Ubuntu 15.10. Lian Yihan discovered that QEMU incorrectly handled the VNC server. A remote attacker could use this issue to cause QEMU to crash, resulting in a denial of service. Various other issues were also addressed.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2015-7549, CVE-2015-8504, CVE-2015-8550, CVE-2015-8558, CVE-2015-8567, CVE-2015-8568, CVE-2015-8613, CVE-2015-8619, CVE-2015-8666, CVE-2015-8743, CVE-2015-8744, CVE-2015-8745, CVE-2016-1568, CVE-2016-1714, CVE-2016-1922, CVE-2016-1981, CVE-2016-2197, CVE-2016-2198
MD5 | 7b6eb8ace215366e9e7219c5f895c6ba
Opendocman 1.3.4 Cross Site Request Forgery
Posted Feb 3, 2016
Authored by Tim Coen | Site curesec.com

Opendocman version 1.3.4 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 06cf658a26fd87d69c35af4f4340355a
Opendocman 1.3.4 HTML Injection
Posted Feb 3, 2016
Authored by Tim Coen | Site curesec.com

Opendocman version 1.3.4 suffers from an html injection vulnerability.

tags | exploit
MD5 | 9dfcbf069c9fffe98fd2fe695c8f0af3
D-Link DVG-N5402SP Path Traversal / Information Disclosure
Posted Feb 3, 2016
Authored by Karn Ganeshen

D-Link DVG-N5402SP suffers from path traversal, weak credential management, and information leakage vulnerabilities.

tags | exploit, vulnerability, file inclusion, info disclosure
advisories | CVE-2015-7245, CVE-2015-7246, CVE-2015-7247
MD5 | 3823d6085fcee2e0ed427f3619c413ad
yTree 1.94-1.1 Buffer Overflow
Posted Feb 3, 2016
Authored by Juan Sacco

yTree version 1.94-1.1 suffers from a buffer overflow vulnerability.

tags | exploit, overflow
MD5 | f5726054b301faa2a826965bab14501a
Atutor 2.2 Cross Site Scripting
Posted Feb 3, 2016
Authored by Tim Coen | Site curesec.com

Atutor version 2.2 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 23fa73d8c6f21d8482251e194b64045b
Equibase.com HTML Injection
Posted Feb 3, 2016
Authored by Russell Butturini

Equibase.com suffers from an html injection vulnerability that may allow for cross site scripting.

tags | exploit, xss
MD5 | bd2dd531005147148d90789353dbe45b
Red Hat Security Advisory 2016-0103-01
Posted Feb 3, 2016
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2016-0103-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. It was found that the x86 ISA is prone to a denial of service attack inside a virtualized environment in the form of an infinite loop in the microcode due to the way delivering of benign exceptions such as #DB is handled. A privileged user inside a guest could use this flaw to create denial of service conditions on the host kernel. A use-after-free flaw was found in the way the Linux kernel's key management subsystem handled keyring object reference counting in certain error path of the join_session_keyring() function. A local, unprivileged user could use this flaw to escalate their privileges on the system.

tags | advisory, denial of service, x86, kernel, local
systems | linux, redhat
advisories | CVE-2015-8104, CVE-2016-0728, CVE-2016-0774
MD5 | 28b58ec3dcd7bed7f48354876eaed0f5
Baumer VeriSens Application Suite 2.6.2 Buffer Overflow
Posted Feb 3, 2016
Authored by LiquidWorm | Site zeroscience.mk

Baumer VeriSens Application Suite version 2.6.2 suffers from a vulnerability that is caused due to a boundary error in baselibs.dll library when processing device job file, which can be exploited to cause a buffer overflow when a user opens e.g. a specially crafted .APP file. Successful exploitation could allow execution of arbitrary code on the affected machine.

tags | exploit, overflow, arbitrary
MD5 | 3d001024b0971b4a7c03e55060a19cad
Oracle 9i XDB FTP Pass Overflow
Posted Feb 3, 2016
Authored by MC, Tom Ryans

Oracle 9i XDB FTP PASS overflow for win32. Ported to python from the oracle9i_xdb_ftp_pass.rb exploit.

tags | exploit, overflow, python
systems | windows
advisories | CVE-2003-0727, OSVDB-2449
MD5 | c9100f7f6b673af76fc1c9cdb47b8cdb
Page 1 of 1
Back1Next

File Archive:

December 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    11 Files
  • 2
    Dec 2nd
    1 Files
  • 3
    Dec 3rd
    18 Files
  • 4
    Dec 4th
    40 Files
  • 5
    Dec 5th
    16 Files
  • 6
    Dec 6th
    50 Files
  • 7
    Dec 7th
    12 Files
  • 8
    Dec 8th
    1 Files
  • 9
    Dec 9th
    1 Files
  • 10
    Dec 10th
    15 Files
  • 11
    Dec 11th
    30 Files
  • 12
    Dec 12th
    25 Files
  • 13
    Dec 13th
    15 Files
  • 14
    Dec 14th
    14 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close