exploit the possibilities
Showing 1 - 24 of 24 RSS Feed

Files Date: 2017-01-13

D-Link DIR-615 Open Redirection / Cross Site Scripting
Posted Jan 13, 2017
Authored by Osanda Malith

D-Link DIR-615 suffers from cross site scripting and open redirection vulnerabilities. Hardware version E3 with firmware version 5.10 is affected.

tags | exploit, vulnerability, xss
MD5 | bbfaa1463e868d5175d7ec50ef497376
Job Portal Script 9.11 SQL Injection
Posted Jan 13, 2017
Authored by Dawid Morawski

Job Portal Script version 9.11 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
MD5 | ee0a771fa40d3f2f7e7ec4495d4224d0
Online Food Delivery 2.04 SQL Injection
Posted Jan 13, 2017
Authored by Dawid Morawski

Online Food Delivery version 2.04 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
MD5 | 6333a5367ba0b9f569719c4d51d4c282
CA Service Desk Manager 12.9 / 14.1 Information Disclosure
Posted Jan 13, 2017
Authored by Kevin Kotas | Site www3.ca.com

CA Technologies support is alerting customers to a potential risk with CA Service Desk Manager. A vulnerability exists in RESTful web services that can potentially allow a remote authenticated attacker to view or modify sensitive information. Fixes are available. The vulnerability is due to incorrect permissions being applied to certain RESTful requests that can allow a malicious user to view or update task information. This vulnerability only affects CA Service Desk Manager installations with RESTful web services running.

tags | advisory, remote, web
advisories | CVE-2016-10086
MD5 | e6795fd40cf17e8f082e4509523f6452
Zimbra Cross Site Request Forgery
Posted Jan 13, 2017
Authored by Damien Cauquil, Anthony Laou-Hine Tsuei

Zimbra versions prior to 8.7 suffer from cross site request forgery vulnerabilities in the administrative interface.

tags | exploit, vulnerability, csrf
advisories | CVE-2016-3403
MD5 | 189d23eebfbeda38ecd6cc32496e1de4
iTechscripts Freelancer Script 5.11 SQL Injection
Posted Jan 13, 2017
Authored by v3n0m

iTechscripts Freelancer Script version 5.11 suffers from a remote SQL injection vulnerability in the sk parameter.

tags | exploit, remote, sql injection
MD5 | cf6300e38de54517cb1d4689d65e9016
School Management Software 2.75 SQL Injection
Posted Jan 13, 2017
Authored by Ihsan Sencan

School Management Software version 2.75 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 1a9ade00c55c52862e2f8ad41c4ada23
aSc Timetables 2017 Buffer Overflow / Code Execution
Posted Jan 13, 2017
Authored by Peter Baris

aSc Timetables 2017 suffers from buffer overflow and code execution vulnerabilities.

tags | exploit, overflow, vulnerability, code execution
MD5 | 2e5dd24ed78e52882ab9559a6bcf21cc
Zeroshell 3.6.0 / 3.7.0 Remote Code Execution
Posted Jan 13, 2017
Authored by Ozer Goker

Zeroshell versions 3.6.0 and 3.7.0 suffer from an unauthenticated remote code execution vulnerability.

tags | exploit, remote, code execution
MD5 | fbdf9be3e2fc84d9c6bb986a9f623ae8
SapLPD 7.4.0 Denial Of Service
Posted Jan 13, 2017
Authored by Peter Baris

SapLPD version 7.4.0 suffers from a denial of service vulnerability.

tags | exploit, denial of service
advisories | CVE-2016-10079
MD5 | ee30d42a0796e19fe265011319094df0
Roxy Fileman 1.4.5 Cross Site Scripting
Posted Jan 13, 2017
Authored by Nc Kh

Roxy Fileman version 1.4.5 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 3f26e791bc7452d1e8ea57ca52a157c0
Mozilla Firefox Use-After-Free
Posted Jan 13, 2017
Authored by Marcin Ressel

Mozilla Firefox versions prior to 50.1.0 use-after proof of concept exploit.

tags | exploit, proof of concept
advisories | CVE-2016-9899
MD5 | 573f5c94d377121938a2ad14e8d42f44
Ubuntu Security Notice USN-3172-1
Posted Jan 13, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3172-1 - It was discovered that Bind incorrectly handled certain malformed responses to an ANY query. A remote attacker could possibly use this issue to cause Bind to crash, resulting in a denial of service. It was discovered that Bind incorrectly handled certain malformed responses to an ANY query. A remote attacker could possibly use this issue to cause Bind to crash, resulting in a denial of service. It was discovered that Bind incorrectly handled certain malformed DS record responses. A remote attacker could possibly use this issue to cause Bind to crash, resulting in a denial of service. This issue only affected Ubuntu 14.04 LTS, Ubuntu 16.04 LTS and Ubuntu 16.10. Various other issues were also addressed.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2016-9131, CVE-2016-9147, CVE-2016-9444
MD5 | 0ba9b98576006060e853b26b1cfccf4e
Slackware Security Advisory - bind Updates
Posted Jan 13, 2017
Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New bind packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix a security issue.

tags | advisory
systems | linux, slackware
advisories | CVE-2016-9778
MD5 | 323e4d64454d863e97ba7dd8fa2a5473
Slackware Security Advisory - gnutls Updates
Posted Jan 13, 2017
Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New gnutls packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues.

tags | advisory
systems | linux, slackware
advisories | CVE-2017-5334, CVE-2017-5335, CVE-2017-5336, CVE-2017-5337
MD5 | a7e3b0901a30f2a33575a6b8275af1aa
Gentoo Linux Security Advisory 201701-35
Posted Jan 13, 2017
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201701-35 - Multiple vulnerabilities have been found in Mozilla SeaMonkey, the worst of which could lead to the remote execution of arbitrary code. Versions less than 2.46-r1 are affected.

tags | advisory, remote, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2016-1521, CVE-2016-1522, CVE-2016-1523, CVE-2016-1526, CVE-2016-9079
MD5 | 069b6113937e168aaf68a6f53ae842fb
Red Hat Security Advisory 2017-0061-01
Posted Jan 13, 2017
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2017-0061-01 - The java-1.6.0-openjdk packages provide the OpenJDK 6 Java Runtime Environment and the OpenJDK 6 Java Software Development Kit. Security Fix: It was discovered that the Hotspot component of OpenJDK did not properly check arguments of the System.arraycopy() function in certain cases. An untrusted Java application or applet could use this flaw to corrupt virtual machine's memory and completely bypass Java sandbox restrictions.

tags | advisory, java
systems | linux, redhat
advisories | CVE-2016-5542, CVE-2016-5554, CVE-2016-5573, CVE-2016-5582, CVE-2016-5597
MD5 | 7e8a38e7dbb36e3a34a20a68615d6356
HP Security Bulletin HPSBGN03694 1
Posted Jan 13, 2017
Authored by HP | Site hp.com

HP Security Bulletin HPSBGN03694 1 - A security vulnerability in DES/3DES block ciphers used in the TLS protocol, could potentially impact HPE SiteScope resulting in remote disclosure of information, also known as the SWEET32 attack. Revision 1 of this advisory.

tags | advisory, remote, protocol
advisories | CVE-2016-2183, CVE-2016-6329
MD5 | 6ae4e6988408716f0d29122364176e71
Debian Security Advisory 3758-1
Posted Jan 13, 2017
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3758-1 - Several denial-of-service vulnerabilities (assertion failures) were discovered in BIND, a DNS server implementation.

tags | advisory, vulnerability
systems | linux, debian
advisories | CVE-2016-9131, CVE-2016-9147, CVE-2016-9444
MD5 | 5915c8e08180edfe8b049518e6869df3
Gentoo Linux Security Advisory 201701-34
Posted Jan 13, 2017
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201701-34 - A vulnerability in runC could lead to privilege escalation. Versions less than 1.0.0_rc2-r2 are affected.

tags | advisory
systems | linux, gentoo
advisories | CVE-2016-9962
MD5 | 8267cf63bb059c9548be1e4018829137
Gentoo Linux Security Advisory 201701-33
Posted Jan 13, 2017
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201701-33 - Multiple vulnerabilities have been found in PostgreSQL, the worst of which could result in execution of arbitrary code or privilege escalation. Versions less than 9.5.4 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2015-5288, CVE-2015-5289, CVE-2016-0766, CVE-2016-0773, CVE-2016-5423, CVE-2016-5424
MD5 | a0a42a52ab574f186c1c5bdb233ebd96
Debian Security Advisory 3760-1
Posted Jan 13, 2017
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3760-1 - Multiple vulnerabilities have been found in the Ikiwiki wiki compiler.

tags | advisory, vulnerability
systems | linux, debian
advisories | CVE-2016-10026, CVE-2016-9646, CVE-2017-0356
MD5 | b563cdc95982598237930788e1e3b10d
cPanel Cross Domain Scripting / Information Disclosure
Posted Jan 13, 2017
Authored by Omid

cPanel suffers from cross domain scripting, user enumeration, and information disclosure vulnerabilities.

tags | exploit, vulnerability, xss, info disclosure
MD5 | 30b4fc563c2e20e28b1d34d727cad30d
Nextcloud / Owncloud User Enumeration
Posted Jan 13, 2017
Authored by Fabian Fingerle

The password reset form in Nextcloud and Owncloud suffers from a user enumeration vulnerability.

tags | advisory
MD5 | a5f89c6d6404348d70fce06faf2ee572
Page 1 of 1
Back1Next

File Archive:

May 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    16 Files
  • 2
    May 2nd
    8 Files
  • 3
    May 3rd
    8 Files
  • 4
    May 4th
    2 Files
  • 5
    May 5th
    1 Files
  • 6
    May 6th
    15 Files
  • 7
    May 7th
    22 Files
  • 8
    May 8th
    16 Files
  • 9
    May 9th
    17 Files
  • 10
    May 10th
    16 Files
  • 11
    May 11th
    3 Files
  • 12
    May 12th
    4 Files
  • 13
    May 13th
    25 Files
  • 14
    May 14th
    24 Files
  • 15
    May 15th
    78 Files
  • 16
    May 16th
    16 Files
  • 17
    May 17th
    12 Files
  • 18
    May 18th
    2 Files
  • 19
    May 19th
    1 Files
  • 20
    May 20th
    2 Files
  • 21
    May 21st
    0 Files
  • 22
    May 22nd
    0 Files
  • 23
    May 23rd
    0 Files
  • 24
    May 24th
    0 Files
  • 25
    May 25th
    0 Files
  • 26
    May 26th
    0 Files
  • 27
    May 27th
    0 Files
  • 28
    May 28th
    0 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close