Exploit the possiblities
Showing 1 - 21 of 21 RSS Feed

Files Date: 2016-07-11

WordPress All In One SEO Pack 2.3.6.1 Cross Site Scripting
Posted Jul 11, 2016
Authored by David Vaartjes

WordPress All In One SEO Pack plugin version 2.3.6.1 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | 7328a9c3eb6607a03a94837753a53506
Ubuntu Security Notice USN-3029-1
Posted Jul 11, 2016
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3029-1 - Tyson Smith and Jed Davis discovered that NSS incorrectly handled memory. A remote attacker could use this issue to cause NSS to crash, resulting in a denial of service, or possibly execute arbitrary code. This update refreshes the NSS package to version 3.23 which includes the latest CA certificate bundle. As a security improvement, this update also modifies NSS behaviour to reject DH key sizes below 1024 bits, preventing a possible downgrade attack. Various other issues were also addressed.

tags | advisory, remote, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2016-2834
MD5 | f0cc2705c7a32c4c6de79fa91249281d
Ubuntu Security Notice USN-3030-1
Posted Jul 11, 2016
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3030-1 - It was discovered that the GD library incorrectly handled memory when using gdImageScaleTwoPass(). A remote attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 14.04 LTS. It was discovered that the GD library incorrectly handled certain malformed XBM images. If a user or automated system were tricked into processing a specially crafted XBM image, an attacker could cause a denial of service. This issue only affected Ubuntu 14.04 LTS, Ubuntu 15.10 and Ubuntu 16.04 LTS. Various other issues were also addressed.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2013-7456, CVE-2016-5116, CVE-2016-5766, CVE-2016-6128, CVE-2016-6161
MD5 | ef39990c4f9e8c080a3fc1ab49e9460e
Ubuntu Security Notice USN-3028-1
Posted Jul 11, 2016
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3028-1 - It was discovered that NSPR incorrectly handled memory allocation. A remote attacker could use this issue to cause NSPR to crash, resulting in a denial of service, or possibly execute arbitrary code.

tags | advisory, remote, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2016-1951
MD5 | 3ec367bf0a7d0c4acf77f08de8271c5c
Red Hat Security Advisory 2016-1392-01
Posted Jul 11, 2016
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2016-1392-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 45.2.0. Security Fix: Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running Thunderbird.

tags | advisory, web, arbitrary
systems | linux, redhat
advisories | CVE-2016-2818
MD5 | 9fd2f3ebd1c2652e2d98f744bc5b155e
Tiki Wiki CMS 15.0 Arbitrary File Download
Posted Jul 11, 2016
Authored by Kacper Szurek

Tiki Wiki CMS version 15.0 suffers from an arbitrary file download vulnerability.

tags | exploit, arbitrary
MD5 | f041d98f51a1e19fa76e0f68994bc8bb
Amazon AWS XSS Protection Bypass
Posted Jul 11, 2016
Authored by Ajay Gowtham

Amazon AWS suffers from a cross site scripting filter bypass vulnerability.

tags | exploit, xss, bypass
MD5 | cfe6aa8a5f5f4ea08c66235d7c005114
WordPress Activity Log 2.3.1 Persistent Cross Site Scripting
Posted Jul 11, 2016
Authored by Han Sahin

WordPress Activity Log plugin version 2.3.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 736e891187f3de875921d045817d118b
My VBA Bot
Posted Jul 11, 2016
Authored by Emeric Nasi

Whitepaper called My VBA Bot - Writing Office Macro FUD encoder and other stuff.

tags | paper
MD5 | 87032531ac567151790aca40969a34bb
WordPress Live Chat Support 6.2.00 Cross Site Scripting
Posted Jul 11, 2016
Authored by Han Sahin

WordPress Live Chat Support plugin version 6.2.00 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | 9145a57994ede874ba32eef668b65779
Joomla Branch 3.0 SQL Injection
Posted Jul 11, 2016
Authored by indoushka

Joomla Branch component version 3.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 2ce9409b849a45fcfbc02c5c79720669
The Realm / Dashgum Software CMS 1.0.1 SQL Injection
Posted Jul 11, 2016
Authored by xBADGIRL21

The Realm / Dashgum Software CMS version 1.0.1 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
MD5 | 58f81d7a3892fba5233c813f0d70e857
Joomla XMap 2.3.4 SQL Injection
Posted Jul 11, 2016
Authored by indoushka

Joomla XMap component version 2.3.4 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 00405f2f87885e8a9f796698d3d77c94
LearnVest Cross Site Scripting
Posted Jul 11, 2016
Authored by Omkar Joshi

LearnVest suffers from a persistent cross site scripting vulnerability. The author has emailed the vendor repeatedly with no response.

tags | exploit, xss
MD5 | 88b74ef69e7b5ce36b252f5127ce82bb
MoneyTrackin Cross Site Scripting
Posted Jul 11, 2016
Authored by Omkar Joshi

MoneyTrackin suffers from multiple cross site scripting vulnerabilities. The author has emailed the vendor repeatedly with no response.

tags | exploit, vulnerability, xss
MD5 | 2648dac50981cf77539239c38ca2e101
Joomla Forms 1.3.1 SQL Injection
Posted Jul 11, 2016
Authored by indoushka

Joomla Forms component version 1.3.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 4d0a43ea587141b245cb9f3e30d71a35
Joomla Services SQL Injection
Posted Jul 11, 2016
Authored by indoushka

The Joomla Services component suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 47afbb2b9c794996805f2f752b2c6898
Core FTP Le 2.2 Buffer Overflow
Posted Jul 11, 2016
Authored by s0nk3y

Core FTP Le version 2.2 suffers from a remote buffer overflow vulnerability.

tags | exploit, remote, overflow
MD5 | 805dad532a1902783c67711a501728eb
MetInfo 5.0.4 SQL Injection
Posted Jul 11, 2016
Authored by indoushka

MetInfo version 5.0.4 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 80baa4f4ed0fc043978119dd89edecac
Ersoft CMS 1.0 SQL Injection
Posted Jul 11, 2016
Authored by indoushka

Ersoft CMS version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 8e1178e13093fd2c098627cdabccc470
Linux x86_64 Probing Reverse Shell Shellcode
Posted Jul 11, 2016
Authored by CripSlick

172 bytes small Linux x86_64 continuously probing reverse shell via socket + port range + password shellcode.

tags | shell, shellcode
systems | linux
MD5 | c0b82a25737b33e5b5affc04f70a4718
Page 1 of 1
Back1Next

File Archive:

December 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    15 Files
  • 2
    Dec 2nd
    2 Files
  • 3
    Dec 3rd
    1 Files
  • 4
    Dec 4th
    15 Files
  • 5
    Dec 5th
    15 Files
  • 6
    Dec 6th
    18 Files
  • 7
    Dec 7th
    17 Files
  • 8
    Dec 8th
    15 Files
  • 9
    Dec 9th
    13 Files
  • 10
    Dec 10th
    4 Files
  • 11
    Dec 11th
    41 Files
  • 12
    Dec 12th
    44 Files
  • 13
    Dec 13th
    25 Files
  • 14
    Dec 14th
    15 Files
  • 15
    Dec 15th
    28 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close