accept no compromises
Showing 1 - 13 of 13 RSS Feed

Files Date: 2017-05-05

Stegano 0.7.1
Posted May 5, 2017
Authored by Cedric Bonhomme | Site github.com

Stegano is a basic Python Steganography module. Stegano implements two methods of hiding: using the red portion of a pixel to hide ASCII messages, and using the Least Significant Bit (LSB) technique. It is possible to use a more advanced LSB method based on integers sets. The sets (Sieve of Eratosthenes, Fermat, Carmichael numbers, etc.) are used to select the pixels used to hide the information.

Changes: Improved generators for the lsb-set module. Improved tests for generators. Improved type hints.
tags | tool, encryption, steganography, python
systems | unix
MD5 | b5a834b30983c3cf7d0ccb6f2bcc4c48
WordPress WebDorado Gallery 1.3.29 SQL Injection
Posted May 5, 2017
Authored by DefenseCode, Neven Biruski

WordPress WebDorado Gallery plugin versions 1.3.29 and below suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 0e0eefadee755b444571e29ec3efdbcf
I2P 0.9.30
Posted May 5, 2017
Authored by welterde | Site i2p2.de

I2P is an anonymizing network, offering a simple layer that identity-sensitive applications can use to securely communicate. All data is wrapped with several layers of encryption, and the network is both distributed and dynamic, with no trusted parties. This is the source code release version.

Changes: Various updates and bug fixes.
tags | tool
systems | unix
MD5 | 9240edcde532f64b4dbdcd0f04e22cc4
WordPress Spider Event Calendar 1.5.49 SQL Injection
Posted May 5, 2017
Authored by DefenseCode, Neven Biruski

WordPress Spider Event Calendar plugin versions 1.5.49 and below suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 6173b28ce5d393ee0b49909e4b50ce45
EMC Data Domain Privilege Escalation
Posted May 5, 2017
Authored by Geoffrey Janjua | Site emc.com

EMC Data Domain OS is potentially vulnerable to a privilege escalation vulnerability. A rogue administrator may be able to log in as the Security Office (SO) and escalate privileges by using SO user?s public key that is stored unprotected on the Data Domain system. Versions 5.2, 5.4, 5.5, 5.6, 5.7 prior to DD OS 5.7.3.0, and 6.0 prior DD OS 6.0.1.0 are affected.

tags | advisory
advisories | CVE-2017-4983
MD5 | 503eaca734b240cc3dd169f7c9f0e207
WordPress Facebook 1.0.13 SQL Injection
Posted May 5, 2017
Authored by DefenseCode, Neven Biruski

WordPress Facebook plugin versions 1.0.13 and below suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 48750895bceff41e1f56dec35cc34df9
CloudBees Jenkins 2.32.1 Remote Code Execution
Posted May 5, 2017
Site SecuriTeam.com

CloudBees Jenkins version 2.32.1 suffers from an unauthenticated remote code execution vulnerability.

tags | exploit, remote, code execution
advisories | CVE-2017-1000353
MD5 | baaa1a412d4f8d0225bc2d762212ce36
ViMbAdmin 3.0.15 Cross Site Scripting
Posted May 5, 2017
Authored by Florian Nivette

ViMbAdmin version 3.0.15 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2017-5870
MD5 | 8be32161c3cbe80f8a52ca8e6e261807
ViMbAdmin 3.0.15 Cross Site Request Forgery
Posted May 5, 2017
Authored by Florian Nivette

ViMbAdmin version 3.0.15 suffers from multiple cross site request forgery vulnerabilities.

tags | exploit, vulnerability, csrf
advisories | CVE-2017-6086
MD5 | 4c4fc3a29f797e5388c9e5d0e67dac21
Google Nexus 9 Build N4F27B Cypress SAR Firmware Injection
Posted May 5, 2017
Authored by Roee Hay | Site alephsecurity.com

Nexus 9 Android Builds before N4F27B contains a firmware injection vulnerability via I2C bus through a SAR sensor driver flashing flaw. This vulnerability requires access to the I2C bus, which is available via the USB fastboot interface and HBOOT interface, which is exposed via the headphone jack.

tags | advisory, injection, android
systems | android
advisories | CVE-2017-0563
MD5 | d42adf741e44e87d3516acfb2d17098d
HP Security Bulletin HPESBHF03736 1
Posted May 5, 2017
Authored by HP | Site hp.com

HP Security Bulletin HPESBHF03736 1 - A potential security vulnerability has been identified in certain legacy versions of HPE Aruba and HPE ProVision network switches. The vulnerability could be remotely exploited to allow remote disclosure of information. Revision 1 of this advisory.

tags | advisory, remote
MD5 | fc1fc2247c45292603829b4060f05124
HP Security Bulletin HPESBGN03740 1
Posted May 5, 2017
Authored by HP | Site hp.com

HP Security Bulletin HPESBGN03740 1 - Potential security vulnerabilities have been identified in HPE Network Automation. The vulnerabilities could be remotely exploited to allow SQL injection, code execution, information disclosure, authentication bypass, elevated privilege execution, and invalid session management. Revision 1 of this advisory.

tags | advisory, vulnerability, code execution, sql injection, info disclosure
advisories | CVE-2017-5810, CVE-2017-5811, CVE-2017-5812, CVE-2017-5813, CVE-2017-5814
MD5 | 62127b6680a77c81ac8a8b51205bee42
WordPress Core 4.6 Unauthenticated Remote Code Execution
Posted May 5, 2017
Authored by Dawid Golunski | Site legalhackers.com

WordPress (core) 4.6 suffers from an unauthenticated remote code execution condition via an exploitable version of PHPMailer built-in to WordPress code. Exploitation details provided.

tags | exploit, remote, code execution
advisories | CVE-2016-10033
MD5 | 7548237ea4bc029d486f673e64741747
Page 1 of 1
Back1Next

File Archive:

October 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    15 Files
  • 2
    Oct 2nd
    16 Files
  • 3
    Oct 3rd
    15 Files
  • 4
    Oct 4th
    15 Files
  • 5
    Oct 5th
    11 Files
  • 6
    Oct 6th
    6 Files
  • 7
    Oct 7th
    2 Files
  • 8
    Oct 8th
    1 Files
  • 9
    Oct 9th
    13 Files
  • 10
    Oct 10th
    16 Files
  • 11
    Oct 11th
    15 Files
  • 12
    Oct 12th
    23 Files
  • 13
    Oct 13th
    13 Files
  • 14
    Oct 14th
    12 Files
  • 15
    Oct 15th
    2 Files
  • 16
    Oct 16th
    16 Files
  • 17
    Oct 17th
    16 Files
  • 18
    Oct 18th
    14 Files
  • 19
    Oct 19th
    8 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close