Exploit the possiblities
Showing 1 - 25 of 35 RSS Feed

Files Date: 2017-02-24

EasyCom SQL iPlug Denial Of Service
Posted Feb 24, 2017
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

EasyCom SQL iPlug suffers from a denial of service vulnerability.

tags | exploit, denial of service, sql injection
advisories | CVE-2017-5359
MD5 | 8194c300ad25a2e7b9dd5bb7ec55a971
EasyCom AS400 PHP API Buffer Overflow
Posted Feb 24, 2017
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

The EasyCom AS400 (iBMI) PHP API suffers from a buffer overflow vulnerability.

tags | exploit, overflow, php
advisories | CVE-2017-5358
MD5 | 8bac9a148fdc87f189881b33bba0ac27
tnef 1.4.12 OOB Read / Write / Type Confusions / Integer Overflows
Posted Feb 24, 2017
Authored by Eric Sesterhenn

tnef versions 1.4.12 and below suffer from multiple integer overflows, type confusions, and out of bounds read and write vulnerabilities.

tags | advisory, overflow, vulnerability
MD5 | 3dc81e25f7ccfd87edf1802b2361b029
Air Transfer 1.2.1 / 1.0.14 Cross Site Scripting
Posted Feb 24, 2017
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

Air Transfer versions 1.2.1 and 1.0.14 suffer from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 0ae2afec7988364584923027a0246094
Microsoft Security Bulletin Summary For February, 2017
Posted Feb 24, 2017
Site microsoft.com

This bulletin summary lists one released Microsoft security bulletin for February, 2017.

tags | advisory
MD5 | 06acf8c43e805e9b8051935bece9da54
Norcon Redux Call For Papers
Posted Feb 24, 2017
Authored by CFP NORCON 2017 | Site norcon.info

The Norcon Redux Call For Papers has been announced. It will take place in Chico, California.

tags | paper, conference
MD5 | b52a35b7596548c855eb29d3ef7c2e5c
Travel Portal Script 9.37 Cross Site Scripting / SQL Injection
Posted Feb 24, 2017
Authored by Marc Castejon

Travel Portal Script version 9.37 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | cae92e673737b9f1bd2e1c9952b853c7
Apple Security Advisory 2017-02-21-2
Posted Feb 24, 2017
Authored by Apple | Site apple.com

Apple Security Advisory 2017-02-21-2 - Logic Pro X 10.3.1 is now available and addresses a memory corruption vulnerability.

tags | advisory
systems | apple
advisories | CVE-2017-2374
MD5 | 6b42e28350b3278f7dfef77f9c9795f8
Apple Security Advisory 2017-02-21-1
Posted Feb 24, 2017
Authored by Apple | Site apple.com

Apple Security Advisory 2017-02-21-1 - GarageBand 10.1.6 is now available and addresses a memory corruption issue.

tags | advisory
systems | apple
advisories | CVE-2017-2374
MD5 | c83e1d6118df42004d8831a7122fe14e
Sonicwall SRA 8.1.0.2-14sv viewcert.cgi Remote Command Execution
Posted Feb 24, 2017
Authored by Russell Sanford | Site metasploit.com

This Metasploit module exploits a remote command execution vulnerability in the Sonicwall SRA Appliance versions 8.1.0.2-14sv and below. The vulnerability exists in a section of the machine's administrative interface for performing configurations related to on-connect scripts to be launched for users connecting.

tags | exploit, remote
MD5 | 96977f57a0372d4799d63aef25fb0885
Sonicwall SRA 8.1.0.2-14sv Remote Command Execution
Posted Feb 24, 2017
Authored by Russell Sanford | Site metasploit.com

This Metasploit module exploits a remote command execution vulnerability in the Sonicwall SRA Appliance versions 8.1.0.2-14sv and below. The vulnerability exists in a section of the machine's administrative interface for performing configurations related to on-connect scripts to be launched for users connecting.

tags | exploit, remote
advisories | CVE-2016-9683
MD5 | 7696de593ce2e2dba321dfa8e0a1e28a
Cloudflare Memory Dumping Reverse Proxies
Posted Feb 24, 2017
Authored by Tavis Ormandy, Google Security Research

Cloudflare has reverse proxies that are dumping uninitialized memory.

tags | exploit
MD5 | d2004124226a0f5f28f259b38ffc3249
Apple WebKit Frame::setDocument UXSS
Posted Feb 24, 2017
Authored by Google Security Research, lokihardt

Apple WebKit suffers from a UXSS via Frame::setDocument.

tags | advisory
systems | apple
advisories | CVE-2017-2365
MD5 | 3acf672fa5003c0923568fb4a24887dc
Apple WebKit Pop-Up Blocker Bypass
Posted Feb 24, 2017
Authored by Google Security Research, lokihardt

AppleWebKit suffers from a bypass in the pop-up blocker via a cross-origin or sandboxed iframe.

tags | advisory
advisories | CVE-2017-2371
MD5 | fcfb98c6af5c9ad9158a407dfed6e336
Apple WebKit FrameLoader::clear UXSS
Posted Feb 24, 2017
Authored by Google Security Research, lokihardt

Apple WebKit suffers from a UXSS via FrameLoader::clear.

tags | exploit
systems | apple
advisories | CVE-2017-2363
MD5 | 8d001e864c4bc18730c26038c7715a49
macOS HelpViewer XSS / Arbitrary File Execution / Read
Posted Feb 24, 2017
Authored by Google Security Research, lokihardt

Cross site scripting on macOS HelpViewer leads to arbitrary file execution and arbitrary file read.

tags | exploit, arbitrary, xss
advisories | CVE-2017-2361
MD5 | 10c1a591e73183963ac1d3b40c47950d
Google Chrome Layout Out-Of-Bounds Read
Posted Feb 24, 2017
Authored by Google Security Research, ifratric

Google Chrome suffers from an out-of-bounds read in layout.

tags | exploit
MD5 | 5fedf3683d4282271e5bdf23735823ff
Microsoft Edge / Internet Explorer HandleColumnBreakOnColumnSpanningElement Type Confusion
Posted Feb 24, 2017
Authored by Google Security Research, ifratric

Microsoft Edge and Internet Explorer suffer from a type confusion in HandleColumnBreakOnColumnSpanningElement.

tags | exploit
advisories | CVE-2017-0037
MD5 | e406c068e15b6ee86877deb70e814d95
Android Javanano Compiler Arbitrary Class Loading / Instantiation
Posted Feb 24, 2017
Authored by Google Security Research, laginimaineb

Android suffers from an arbitrary class loading and instantiation in the protobuf parcelable "javanano" compiler.

tags | exploit, arbitrary
MD5 | 9473ffd296828b7cc161bd571b5af78a
Linux/x86-64 Egghunter Shellcode
Posted Feb 24, 2017
Authored by odzhancode

38 bytes small Linux x86-64 egghunter shellcode.

tags | x86, shellcode
systems | linux
MD5 | d849a20f78dbdc7d8cd39d56d0147b48
WordPress Mail Masta 1.0 SQL Injection
Posted Feb 24, 2017
Authored by Hanley Shun

WordPress Mail Masta plugin version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2017-6095, CVE-2017-6096, CVE-2017-6097, CVE-2017-6098
MD5 | 13c2d9f892ff446b7e75db54d40731ed
MBLS Flex CMS 0.7.2 SQL Injection / Cross Site Scripting
Posted Feb 24, 2017
Authored by Bilal Kardadou

MBLS Flex CMS version 0.7.2 suffers from remote SQL injection and cross site scripting vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | 883148a7dc00e5d9b5dd19d41cf07bd4
Sophos Web Appliance 4.2.1.3 Remote Command Execution
Posted Feb 24, 2017
Authored by Russell Sanford | Site metasploit.com

This Metasploit module exploits a remote command execution vulnerability in the Sophos Web Appliance versions 4.2.1.3 and below. The vulnerability exists in a section of the machine's administrative interface for performing diagnostic network tests with wget and unsanitized user supplied information.

tags | exploit, remote, web
advisories | CVE-2016-9554
MD5 | f2f0f56ccda0406201c5986e9bf57eff
ProjectSend r754 Insecure Direct Object Reference / Authenticaton Bypass
Posted Feb 24, 2017
Authored by Lawrence Amer | Site vulnerability-lab.com

ProjectSend r754 suffers from authentication bypass and insecure direct object reference vulnerabilities.

tags | exploit, vulnerability
MD5 | bb21cb97f61eb340b3f9e6f890c76b49
Lock Photos Album And Videos Safe 4.3 Directory Traversal
Posted Feb 24, 2017
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

Lock Photos Album and Videos Safe version 4.3 suffers from a directory traversal vulnerability.

tags | exploit
MD5 | 5349a070334d78dcd1555c7cea62c17c
Page 1 of 2
Back12Next

File Archive:

December 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    15 Files
  • 2
    Dec 2nd
    2 Files
  • 3
    Dec 3rd
    1 Files
  • 4
    Dec 4th
    15 Files
  • 5
    Dec 5th
    15 Files
  • 6
    Dec 6th
    18 Files
  • 7
    Dec 7th
    17 Files
  • 8
    Dec 8th
    15 Files
  • 9
    Dec 9th
    13 Files
  • 10
    Dec 10th
    4 Files
  • 11
    Dec 11th
    41 Files
  • 12
    Dec 12th
    44 Files
  • 13
    Dec 13th
    25 Files
  • 14
    Dec 14th
    15 Files
  • 15
    Dec 15th
    28 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close