what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 21 of 21 RSS Feed

Files Date: 2016-07-11

WordPress All In One SEO Pack 2.3.6.1 Cross Site Scripting
Posted Jul 11, 2016
Authored by David Vaartjes

WordPress All In One SEO Pack plugin version 2.3.6.1 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | a0532b8b84d3b391236eaaec772e4390119e418ddeb1bdb40bb92cad63c83984
Ubuntu Security Notice USN-3029-1
Posted Jul 11, 2016
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3029-1 - Tyson Smith and Jed Davis discovered that NSS incorrectly handled memory. A remote attacker could use this issue to cause NSS to crash, resulting in a denial of service, or possibly execute arbitrary code. This update refreshes the NSS package to version 3.23 which includes the latest CA certificate bundle. As a security improvement, this update also modifies NSS behaviour to reject DH key sizes below 1024 bits, preventing a possible downgrade attack. Various other issues were also addressed.

tags | advisory, remote, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2016-2834
SHA-256 | 6e601ccd1ee83f0d499b744c4b1829d9d494088ab8da32987ec0617887d2186f
Ubuntu Security Notice USN-3030-1
Posted Jul 11, 2016
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3030-1 - It was discovered that the GD library incorrectly handled memory when using gdImageScaleTwoPass(). A remote attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 14.04 LTS. It was discovered that the GD library incorrectly handled certain malformed XBM images. If a user or automated system were tricked into processing a specially crafted XBM image, an attacker could cause a denial of service. This issue only affected Ubuntu 14.04 LTS, Ubuntu 15.10 and Ubuntu 16.04 LTS. Various other issues were also addressed.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2013-7456, CVE-2016-5116, CVE-2016-5766, CVE-2016-6128, CVE-2016-6161
SHA-256 | adc630ed03e8562917c9a2cb01fe5bb9be41e5ce50a6e10a8fe9950508867dec
Ubuntu Security Notice USN-3028-1
Posted Jul 11, 2016
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3028-1 - It was discovered that NSPR incorrectly handled memory allocation. A remote attacker could use this issue to cause NSPR to crash, resulting in a denial of service, or possibly execute arbitrary code.

tags | advisory, remote, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2016-1951
SHA-256 | 5756a57228bcb3184a06152b3f6d61b0bfe18c1751779fae6f150510dbf8fd57
Red Hat Security Advisory 2016-1392-01
Posted Jul 11, 2016
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2016-1392-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 45.2.0. Security Fix: Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running Thunderbird.

tags | advisory, web, arbitrary
systems | linux, redhat
advisories | CVE-2016-2818
SHA-256 | 591efa83c0955a542504cbb702a0469fa8d8cf263b41605c6b0c60794508780d
Tiki Wiki CMS 15.0 Arbitrary File Download
Posted Jul 11, 2016
Authored by Kacper Szurek

Tiki Wiki CMS version 15.0 suffers from an arbitrary file download vulnerability.

tags | exploit, arbitrary
SHA-256 | 3b5608b99ef2780f0968f1088b711658cbefed9cd86aea883493a210051eea05
Amazon AWS XSS Protection Bypass
Posted Jul 11, 2016
Authored by Ajay Gowtham

Amazon AWS suffers from a cross site scripting filter bypass vulnerability.

tags | exploit, xss, bypass
SHA-256 | 08734fa80ba07ef632be8b5a92e85392c6d039d9740271d3f69322da8b32974a
WordPress Activity Log 2.3.1 Persistent Cross Site Scripting
Posted Jul 11, 2016
Authored by Han Sahin

WordPress Activity Log plugin version 2.3.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 44d3c110001dcf64ab0c4de151258da4979819c57f20768b01dda988930324b4
My VBA Bot
Posted Jul 11, 2016
Authored by Emeric Nasi

Whitepaper called My VBA Bot - Writing Office Macro FUD encoder and other stuff.

tags | paper
SHA-256 | cd3df45647920f0daf5fc401196c033c74794ce9607f20e3bb7bc0fa00433fdd
WordPress Live Chat Support 6.2.00 Cross Site Scripting
Posted Jul 11, 2016
Authored by Han Sahin

WordPress Live Chat Support plugin version 6.2.00 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 203bd383c9f3fed80a99fa6ad0b0ad8f03bcf156222eb506d8f5e0754976fc74
Joomla Branch 3.0 SQL Injection
Posted Jul 11, 2016
Authored by indoushka

Joomla Branch component version 3.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | d2b89c99caa35ad5d84d263bfd6ac3fa498d4b08bbdf1189a1e46af43ecddf56
The Realm / Dashgum Software CMS 1.0.1 SQL Injection
Posted Jul 11, 2016
Authored by xBADGIRL21

The Realm / Dashgum Software CMS version 1.0.1 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
SHA-256 | d1741127af5c30842ce69d01f0c198cbdaf847521e96423a529c1ac82ec16827
Joomla XMap 2.3.4 SQL Injection
Posted Jul 11, 2016
Authored by indoushka

Joomla XMap component version 2.3.4 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 5f0ef74ab3c000e298085210a36c009c750b3fc235db83b82edddf011e9110dd
LearnVest Cross Site Scripting
Posted Jul 11, 2016
Authored by Omkar Joshi

LearnVest suffers from a persistent cross site scripting vulnerability. The author has emailed the vendor repeatedly with no response.

tags | exploit, xss
SHA-256 | 19aa9fd28ef3339f128e1a409e44d5a4d7c30ecbbc0a556276b6de77ff282545
MoneyTrackin Cross Site Scripting
Posted Jul 11, 2016
Authored by Omkar Joshi

MoneyTrackin suffers from multiple cross site scripting vulnerabilities. The author has emailed the vendor repeatedly with no response.

tags | exploit, vulnerability, xss
SHA-256 | 820177af7ad2637bead61e71c82a2f5cc16d0a21cebfd2a1a81a6749158a236a
Joomla Forms 1.3.1 SQL Injection
Posted Jul 11, 2016
Authored by indoushka

Joomla Forms component version 1.3.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | f237d4e38a1bd35ad882770cdcc1e0baff35fbb6e61342d0b81e86d2a9b8e690
Joomla Services SQL Injection
Posted Jul 11, 2016
Authored by indoushka

The Joomla Services component suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | c865b0b4d339c8f765db2c6a4fc0e9414f9319f5c6bec0c7320b77fd2b41ff94
Core FTP Le 2.2 Buffer Overflow
Posted Jul 11, 2016
Authored by s0nk3y

Core FTP Le version 2.2 suffers from a remote buffer overflow vulnerability.

tags | exploit, remote, overflow
SHA-256 | c439422a095e3e76ee303e59070519ce34630e10a5b90b38017a6437050a4299
MetInfo 5.0.4 SQL Injection
Posted Jul 11, 2016
Authored by indoushka

MetInfo version 5.0.4 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 37cc8209cbab837e8f6b68a2b0a84c97ffde0f89c8ced9ff0e5ba4549e0bf34e
Ersoft CMS 1.0 SQL Injection
Posted Jul 11, 2016
Authored by indoushka

Ersoft CMS version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 63fe5757fe118e43554f45c97d204222ea0b5e38f4501146eccbabf379b7b21f
Linux x86_64 Probing Reverse Shell Shellcode
Posted Jul 11, 2016
Authored by CripSlick

172 bytes small Linux x86_64 continuously probing reverse shell via socket + port range + password shellcode.

tags | shell, shellcode
systems | linux
SHA-256 | 2c792213a82b5f091b7bedb72fdc154120862ee15a4edb864e7aabeafd8ef694
Page 1 of 1
Back1Next

File Archive:

July 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    52 Files
  • 2
    Jul 2nd
    0 Files
  • 3
    Jul 3rd
    0 Files
  • 4
    Jul 4th
    11 Files
  • 5
    Jul 5th
    8 Files
  • 6
    Jul 6th
    8 Files
  • 7
    Jul 7th
    0 Files
  • 8
    Jul 8th
    0 Files
  • 9
    Jul 9th
    0 Files
  • 10
    Jul 10th
    0 Files
  • 11
    Jul 11th
    0 Files
  • 12
    Jul 12th
    0 Files
  • 13
    Jul 13th
    0 Files
  • 14
    Jul 14th
    0 Files
  • 15
    Jul 15th
    0 Files
  • 16
    Jul 16th
    0 Files
  • 17
    Jul 17th
    0 Files
  • 18
    Jul 18th
    0 Files
  • 19
    Jul 19th
    0 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close