ignore security and it'll go away
Showing 1 - 25 of 41 RSS Feed

Files Date: 2017-03-03

TOR Virtual Network Tunneling Tool 0.2.9.10
Posted Mar 3, 2017
Authored by Roger Dingledine | Site tor.eff.org

Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with built-in privacy features. It provides the foundation for a range of applications that allow organizations and individuals to share information over public networks without compromising their privacy. Individuals can use it to keep remote Websites from tracking them and their family members. They can also use it to connect to resources such as news sites or instant messaging services that are blocked by their local Internet service providers (ISPs).

Changes: Tor 0.2.9.10 backports a security fix for users who build Tor with the --enable-expensive-hardening option. It also includes fixes for some major issues affecting directory authorities, LibreSSL compatibility, and IPv6 correctness.
tags | tool, remote, local, peer2peer
systems | unix
MD5 | 6760a646a096b61e307b84fb5ae93cc7
Hashcat Advanced Password Recovery 3.40 Source Code
Posted Mar 3, 2017
Authored by Kartan | Site hashcat.net

Hashcat is an advanced GPU hash cracking utility that includes the World's fastest md5crypt, phpass, mscash2 and WPA / WPA2 cracker. It also has the first and only GPGPU-based rule engine, focuses on highly iterated modern hashes, single dictionary-based attacks, and more. This is the source code release.

Changes: Added support for loading hccapx files. Added support for filtering hccapx message pairs using --hccapx-message-pair. - Added support for parsing 7-Zip hashes with LZMA/LZMA2 compression indicator set to a non-zero value. Many other additions.
tags | tool, cracker
systems | unix
MD5 | 86f54b93af53325008cb2fd6b0d47d80
Hashcat Advanced Password Recovery 3.40 Binary Release
Posted Mar 3, 2017
Authored by Kartan | Site hashcat.net

Hashcat is an advanced GPU hash cracking utility that includes the World's fastest md5crypt, phpass, mscash2 and WPA / WPA2 cracker. It also has the first and only GPGPU-based rule engine, focuses on highly iterated modern hashes, single dictionary-based attacks, and more. This is the binary release.

Changes: Added support for loading hccapx files. Added support for filtering hccapx message pairs using --hccapx-message-pair. - Added support for parsing 7-Zip hashes with LZMA/LZMA2 compression indicator set to a non-zero value. Many other additions.
tags | tool, cracker
MD5 | 8261eab7131cf5722d33bb6aa7b2df39
Capstone 3.0.5
Posted Mar 3, 2017
Authored by Nguyen Anh Quynh | Site capstone-engine.org

Capstone is a multi-architecture, multi-platform disassembly framework. It has a simple and lightweight architecture-neutral API, thread-safe by design, provides details on disassembled instruction, and more.

Changes: Release 3.0.5-RC2 is a release candidate version, with important fixes in the core and several bindings.
tags | tool
systems | unix
MD5 | d8ebb36e9880c270e2fbb2770956917f
I2P 0.9.29
Posted Mar 3, 2017
Authored by welterde | Site i2p2.de

I2P is an anonymizing network, offering a simple layer that identity-sensitive applications can use to securely communicate. All data is wrapped with several layers of encryption, and the network is both distributed and dynamic, with no trusted parties. This is the source code release version.

Changes: Various updates and bug fixes.
tags | tool
systems | unix
MD5 | 45da06b536d80e91b2bb5f0940520c69
Lynis Auditing Tool 2.4.4
Posted Mar 3, 2017
Authored by Michael Boelen | Site cisofy.com

Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.

Changes: Fix for upload function to be used from profile. Reduce screen output for mail section, unless --verbose is used. Code cleanups and removed update release command.
tags | tool, scanner
systems | unix
MD5 | 61ac17a05652a50cf2fcf17bc2faae12
Ubuntu Security Notice USN-3215-2
Posted Mar 3, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3215-2 - USN-3215-1 fixed a vulnerability in Munin. The upstream patch caused a regression leading to errors being appended to the log file. This update fixes the problem. It was discovered that Munin incorrectly handled CGI graphs. A remote attacker could use this issue to overwrite arbitrary files as the www-data user.

tags | advisory, remote, arbitrary, cgi
systems | linux, ubuntu
MD5 | 51ece64d0111f805d85cf6c8b3cf6875
pfSense 2.3.2 Cross Site Request Forgery / Cross Site Scripting
Posted Mar 3, 2017
Authored by Yann CAM

pfSense version 2.3.2 suffers from cross site request forgery and cross site scripting vulnerabilities that can assist in gaining a reverse-shell remotely as root.

tags | exploit, shell, root, vulnerability, xss, csrf
MD5 | 8e0b5a8504ac3631cc0b658d6f10ed20
Joomla Recipe Manager 2.2 SQL Injection
Posted Mar 3, 2017
Authored by Ihsan Sencan

Joomla Recipe Manager component version 2.2 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 9f0584ec82edf0eed66645a9f11c91c2
Joomla Guesser 1.0.4 SQL Injection
Posted Mar 3, 2017
Authored by Ihsan Sencan

Joomla Guesser component version 1.0.4 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | d5b0ce4e19d75af51fa37d77afca088b
Joomla StreetGuessr Game 1.0 SQL Injection
Posted Mar 3, 2017
Authored by Ihsan Sencan

Joomla StreetGuessr Game component version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 42e3ab61cb172e5b4f68b99e466cc36b
Joomla Abstract 2.1 SQL Injection
Posted Mar 3, 2017
Authored by Ihsan Sencan

Joomla Abstract component version 2.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 256de324738631f4b79a8cc58e1a4fb5
NetGain Enterprise Manager 7.2.562 Command Execution
Posted Mar 3, 2017
Authored by MrChaZ

NetGain Enterprise Manager versions 7.2.562 build 853 and below suffer from a ping command injection vulnerability.

tags | exploit
MD5 | ababbe76ae35284eaf60181469beff03
NetSTR 0.20
Posted Mar 3, 2017
Authored by Jay Fink | Site systhread.net

NetSTR is an open source small, fast and easy to use port scanner and packet sniffer. IPv4 scanner can perform ranged, single or use an internal top ports list plus it has a flexible timers/port capability. IPv6 single port single host is supported. The tcp and arp sniffers print an easy to read dump format and have a full packet decode capability. Additionally netstr sports a fuzzy passive network scanner.

Changes: Added show capability to udpscan. Moved prog.h to netstr.h to avoid any future conflicts. Initial UDP support added.
tags | tool, scanner, tcp
systems | unix
MD5 | 5cbf53d0abcacc32b91627a6cc9bfb27
Linux x86_64 Polymorphic Shellcode
Posted Mar 3, 2017
Authored by Robert L. Taylor

31 bytes small Linux x86_64 polymorphic setuid(0) and execve(/bin/sh) shellcode.

tags | shellcode
systems | linux
MD5 | 08883ab6190cf0359248be21103b2f5d
WordPress Contact Form 4.0.0 Cross Site Scripting
Posted Mar 3, 2017
Authored by Securify B.V., Julien Rentrop

WordPress Contact Form plugin version 4.0.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 9a02b786071ae7946b341084679559f2
WordPress Contact Form Manager CSRF / XSS
Posted Mar 3, 2017
Authored by Securify B.V., Edwin Molenaar

WordPress Contact Form Manager plugin suffers from cross site request forgery and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss, csrf
MD5 | 4987a2afdb93bc122ac36851c982c9ed
WordPress User Login Log 2.2.1 Cross Site Scripting
Posted Mar 3, 2017
Authored by Axel Koolhaas

WordPress User Login Log plugin version 2.2.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 41c180edba82d2f1157d7ef3adce10c1
WordPress Popup By Supsystic 1.7.6 Cross Site Request Forgery
Posted Mar 3, 2017
Authored by Securify B.V., Radjnies Bhansingh

WordPress Popup by Supsystic plugin 1.7.6 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 0b5ccac0638dde090a40ca6b20b5ac07
WordPress VaultPress 1.8.4 Remote Code Execution / Man-In-The-Middle
Posted Mar 3, 2017
Authored by David Vaartjes

WordPress VaultPress plugin version 1.8.4 suffers from a remote code execution via man-in-the-middle attack vulnerability.

tags | exploit, remote, code execution
MD5 | e789ff80417d72dd4abdeb1a999234a9
WordPress Alpine PhotoTile For Instagram 1.2.7.7 XSS
Posted Mar 3, 2017
Authored by Antonis Manaras

WordPress Alpine PhotoTile for Instagram plugin version 1.2.7.7 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | ba878728c230fc48ba9417d4f7598544
WordPress Google Analytics Dashboard 2.1.1 Cross Site Scripting
Posted Mar 3, 2017
Authored by Yorick Koster, Securify B.V.

WordPress Google Analytics Dashboard plugin version 2.1.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 2e909e9b3784d3c4edbbc4b193525cfd
WordPress Magic Fields 1 1.7.1 Cross Site Scripting
Posted Mar 3, 2017
Authored by Securify B.V., Burak Kelebek

WordPress Magic Fields 1 plugin version 1.7.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 5f73b17edab388c1e8270618cb22718f
WordPress Username Enumeration
Posted Mar 3, 2017
Authored by Dctor

Simple PHP proof of concept exploit that demonstrates username enumeration in WordPress versions prior to 4.7.1.

tags | exploit, php, proof of concept
advisories | CVE-2017-5487
MD5 | c466685d3f06c12ee2ebd82a5c061d89
WordPress Atahualpa Theme Cross Site Scripting
Posted Mar 3, 2017
Authored by Spyros Gasteratos

WordPress Atahualpa theme suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 9da700c7fbb14213f4d6ed6224f7796d
Page 1 of 2
Back12Next

File Archive:

October 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    15 Files
  • 2
    Oct 2nd
    16 Files
  • 3
    Oct 3rd
    15 Files
  • 4
    Oct 4th
    15 Files
  • 5
    Oct 5th
    11 Files
  • 6
    Oct 6th
    6 Files
  • 7
    Oct 7th
    2 Files
  • 8
    Oct 8th
    1 Files
  • 9
    Oct 9th
    13 Files
  • 10
    Oct 10th
    16 Files
  • 11
    Oct 11th
    15 Files
  • 12
    Oct 12th
    23 Files
  • 13
    Oct 13th
    13 Files
  • 14
    Oct 14th
    12 Files
  • 15
    Oct 15th
    2 Files
  • 16
    Oct 16th
    16 Files
  • 17
    Oct 17th
    16 Files
  • 18
    Oct 18th
    15 Files
  • 19
    Oct 19th
    10 Files
  • 20
    Oct 20th
    7 Files
  • 21
    Oct 21st
    4 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close