Exploit the possiblities
Showing 1 - 14 of 14 RSS Feed

Files Date: 2016-05-27

Apache PDFBox 1.8.11 / 2.0.0 / XML Injection
Posted May 27, 2016
Authored by Mesut Timur, Arthur Khashaev, Seulgi Kim

Apache PDFBox versions 1.8.0 through 1.8.11 and 2.0.0 suffer from an XML external entity injection vulnerability.

tags | advisory
advisories | CVE-2016-2175
MD5 | 81953302389640242bde73ad8e3466d4
Faraday 1.0.20
Posted May 27, 2016
Authored by Francisco Amato

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Removed description from Hosts list in WEB UI. Fixed sort in Hosts list in WEB UI. Fixed ports sorting in Host view in WEB UI. Added search link for OS in Hosts list in WEB UI. Removed description from Services list in WEB UI. Added version to Services list in WEB UI. Modified false values in Hosts list in WEB UI. Added search links in Services list in WEB UI. Added scrollbar in Gtk Terminal. Various other updates and improvements.
tags | tool, rootkit
systems | unix
MD5 | 342f2cef914d88721526f1478b7bd6d9
Citrix Netscaler 11.0 Build 64.35 Cross Site Scripting
Posted May 27, 2016
Authored by Dr. Daniel Schliebner

The login page of the Citrix Netscaler Gateway web front-end is vulnerable to a DOM-based cross site scripting (XSS) vulnerability due to improper sanitization of the content of the "NSC_TMAC" cookie.

tags | exploit, web, xss
advisories | CVE-2016-4945
MD5 | 7fd954e4ba1557ede715df01dfcc253f
Apache Qpid Java Broker 6.0.2 Denial Of Service
Posted May 27, 2016
Authored by Alex Szczuczko

Apache Qpid Java Broker versions 6.0.0, 6.0.1, and 6.0.2 suffer from a denial of service vulnerability.

tags | advisory, java, denial of service
advisories | CVE-2016-3094
MD5 | ade15790275938230b1ba0c359a3a318
Apache Qpid Java Broker 6.0.2 Authentication Bypass
Posted May 27, 2016

Apache Qpid Java Broker versions 6.0.2 and below suffer from an authentication bypass vulnerability.

tags | advisory, java, bypass
advisories | CVE-2016-4432
MD5 | 8123c6cc25c548b9c03f9be6318cb089
Slackware Security Advisory - php Updates
Posted May 27, 2016
Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New php packages are available for Slackware 14.0, 14.1, and -current to fix security issues.

tags | advisory, php
systems | linux, slackware
advisories | CVE-2013-7456, CVE-2016-5093, CVE-2016-5094, CVE-2016-5096
MD5 | 0216fa0b9859d4bcee99cb0f8db6879a
Slackware Security Advisory - libxslt Updates
Posted May 27, 2016
Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New libxslt packages are available for Slackware 14.0, 14.1, and -current to fix a security issue.

tags | advisory
systems | linux, slackware
advisories | CVE-2015-7995
MD5 | be710d1fbc29103cd2c465732780d235
Slackware Security Advisory - libxml2 Updates
Posted May 27, 2016
Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New libxml2 packages are available for Slackware 14.0, 14.1, and -current to fix security issues.

tags | advisory
systems | linux, slackware
advisories | CVE-2016-4447, CVE-2016-4448, CVE-2016-4449
MD5 | 1c33839b415bdf13577c201d7f2262a0
PHP Real Estate Script 4.9.0 SQL Injection
Posted May 27, 2016
Authored by Meisam Monsef

PHP Real Estate Script version 4.9.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, php, sql injection
MD5 | b8b1ca30b356d3e666b9a38eef83e19a
Joomla Simple Calendar 0.7.6b SQL Injection
Posted May 27, 2016
Authored by indoushka

Joomla Simple Calendar component version 0.7.6b suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | e45385b15b5d375b35c688ee20e6b812
Debian Security Advisory 3587-1
Posted May 27, 2016
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3587-1 - Several vulnerabilities were discovered in libgd2, a library for programmatic graphics creation and manipulation. A remote attacker can take advantage of these flaws to cause a denial-of-service against an application using the libgd2 library.

tags | advisory, remote, vulnerability
systems | linux, debian
advisories | CVE-2013-7456, CVE-2015-8874, CVE-2015-8877
MD5 | 62534ba902436bb6b00c8debfbd46c99
EMC Isilon OneFS SMB Man-In-The-Middle
Posted May 27, 2016
Site emc.com

EMC Isilon OneFS and EMC IsilonSD Edge include an implementation of the SMB protocol. This implementation is vulnerable to a man-in-the-middle attack that could compromise the affected systems. EMC IsilonSD Edge OneFS versions 8.0.x and EMC Isilon OneFS versions 8.0.x, 7.2.1.x, 7.2.0.x, 7.1.1.x, and 7.1.0.x are affected.

tags | advisory, protocol
advisories | CVE-2016-0907
MD5 | 2af010dcabd8c6abe2cf63a98fedcda1
WordPress Ninja Forms Unauthenticated File Upload
Posted May 27, 2016
Authored by Rob Carr, James Golovich | Site metasploit.com

Versions 2.9.36 to 2.9.42 of the Ninja Forms plugin contain an unauthenticated file upload vulnerability, allowing guests to upload arbitrary PHP code that can be executed in the context of the web server.

tags | exploit, web, arbitrary, php, file upload
advisories | CVE-2016-1209
MD5 | f03f7b3010a384cc311fa74d6dc49d0f
Apache Tika 1.12 XXE Injection
Posted May 27, 2016
Authored by Mesut Timur, Arthur Khashaev, Seulgi Kim

Apache Tika versions 0.10 through 1.12 suffer from an XXE injection vulnerability.

tags | advisory
advisories | CVE-2016-4434
MD5 | 59d2e2a74e6dcdddca72fe52de30aed2
Page 1 of 1
Back1Next

File Archive:

November 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    22 Files
  • 2
    Nov 2nd
    28 Files
  • 3
    Nov 3rd
    10 Files
  • 4
    Nov 4th
    1 Files
  • 5
    Nov 5th
    5 Files
  • 6
    Nov 6th
    15 Files
  • 7
    Nov 7th
    15 Files
  • 8
    Nov 8th
    13 Files
  • 9
    Nov 9th
    9 Files
  • 10
    Nov 10th
    9 Files
  • 11
    Nov 11th
    3 Files
  • 12
    Nov 12th
    2 Files
  • 13
    Nov 13th
    15 Files
  • 14
    Nov 14th
    17 Files
  • 15
    Nov 15th
    19 Files
  • 16
    Nov 16th
    15 Files
  • 17
    Nov 17th
    19 Files
  • 18
    Nov 18th
    4 Files
  • 19
    Nov 19th
    2 Files
  • 20
    Nov 20th
    9 Files
  • 21
    Nov 21st
    15 Files
  • 22
    Nov 22nd
    23 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close