Twenty Year Anniversary
Showing 1 - 19 of 19 RSS Feed

Files Date: 2017-09-12

AirStar Airbnb Clone Script 1.0 SQL Injection
Posted Sep 12, 2017
Authored by 8bitsec

AirStar Airbnb Clone Script version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 4cc6f5a6a292c4f0169833c7ca1a6b8b
Red Hat Security Advisory 2017-2678-01
Posted Sep 12, 2017
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2017-2678-01 - PostgreSQL is an advanced object-relational database management system. The following packages have been upgraded to a later upstream version: rh-postgresql94-postgresql. Security Fix: It was found that authenticating to a PostgreSQL database account with an empty password was possible despite libpq's refusal to send an empty password. A remote attacker could potentially use this flaw to gain access to database accounts with empty passwords.

tags | advisory, remote
systems | linux, redhat
advisories | CVE-2017-7546, CVE-2017-7547, CVE-2017-7548
MD5 | 24ff9b957afafaecc864a5afed97f5d0
Hikvision IP Camera Access Bypass
Posted Sep 12, 2017
Authored by Monte Crypto

Hikvision IP Cameras suffers from multiple access bypass vulnerabilities.

tags | exploit, vulnerability, bypass
MD5 | 6fc12ebc93196ea83a1dbcc6864fa795
PHP Dashboards NEW 4.4 SQL Injection
Posted Sep 12, 2017
Authored by Ihsan Sencan

PHP Dashboards NEW version 4.4 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, php, sql injection
MD5 | db1a533b5870ca5c881efd5b9d56039e
Red Hat Security Advisory 2017-2677-01
Posted Sep 12, 2017
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2017-2677-01 - PostgreSQL is an advanced object-relational database management system. The following packages have been upgraded to a later upstream version: rh-postgresql95-postgresql. Security Fix: It was found that authenticating to a PostgreSQL database account with an empty password was possible despite libpq's refusal to send an empty password. A remote attacker could potentially use this flaw to gain access to database accounts with empty passwords.

tags | advisory, remote
systems | linux, redhat
advisories | CVE-2017-7546, CVE-2017-7547, CVE-2017-7548
MD5 | 761d3e5f89a01fa931fffbd8ed4b7885
Gr8 Multiple Search Engine Script 1.0 SQL Injection
Posted Sep 12, 2017
Authored by Ihsan Sencan

Gr8 Multiple Search Engine Script version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 52c69c56b583b049bd791c943591efdd
LIFE CMS Directory Traversal
Posted Sep 12, 2017
Authored by Renzi

LIFE SISTEMAS CMS suffers from a directory traversal vulnerability.

tags | exploit, file inclusion
MD5 | fcf18dd822df0ed672bf0cff3f598547
Jungo DriverWizard WinDriver 12.4.0 Overflow
Posted Sep 12, 2017
Authored by mr_me

Jungo DriverWizard WinDriver versions 12.4.0 and below suffer from a kernel pool overflow vulnerability.

tags | exploit, overflow, kernel
advisories | CVE-2017-14344
MD5 | a86d6b73057080faf790fe404c28e2d0
PHP Dashboards NEW 4.4 Arbitrary File Read
Posted Sep 12, 2017
Authored by Ihsan Sencan

PHP Dashboards NEW version 4.4 suffers from an arbitrary file read vulnerability.

tags | exploit, arbitrary, php
MD5 | 62b7d50497d65bc8022a41ef2f61bdac
FoodStar Swiggy Clone Script 1.0 SQL Injection
Posted Sep 12, 2017
Authored by Ihsan Sencan

FoodStar Swiggy Clone Script version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 9e83a4468193cdd50da837411fab18b2
osTicket 1.10 SQL Injection
Posted Sep 12, 2017
Authored by Mehmet Ince

osTicket version 1.10 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | edb823aec7badd3b6f3d1fed3d989044
Ansvif 1.8
Posted Sep 12, 2017
Authored by Marshall Whittaker | Site oxagast.github.io

Ansvif is "A Not So Very Intelligent Fuzzer". It feeds garbage arguments and data into programs trying to induce a fault.

Changes: This release includes some touchups to the main ansvif code, better crash detection under linux, as well as a primary new feature: the frontend to ansvif.
tags | tool, fuzzer
systems | unix
MD5 | 1ab718b21b637249541d3d518f0641e9
Mobius Forensic Toolkit 0.5.31
Posted Sep 12, 2017
Site savannah.nongnu.org

Mobius Forensic Toolkit is a forensic framework written in Python/GTK that manages cases and case items, providing an abstract interface for developing extensions. Cases and item categories are defined using XML files for easy integration with other tools.

Changes: Tons of changes to the C++ and python APIs. Various other changes.
tags | tool, python, forensics
MD5 | 215572240548fdb4ae6362967fe9963c
Blue Team Training Toolkit (BT3) 2.5
Posted Sep 12, 2017
Authored by Juan J. Guelfo | Site encripto.no

Blue Team Training Toolkit (BT3) is an attempt to introduce improvements in current computer network defense analysis training. Based on adversary replication techniques, and with reusability in mind, BT3 allows individuals and organizations to create realistic computer attack scenarios, while reducing infrastructure costs, implementation time and risk. The Blue Team Training Toolkit is written in Python, and it includes the latest versions of Encripto's Maligno and Pcapteller.

Changes: Bug fixes and minor adjustments.
tags | tool, python
systems | unix
MD5 | 80ed0156b08d33062b359eb27242d763
Red Hat Security Advisory 2017-2676-01
Posted Sep 12, 2017
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2017-2676-01 - Chromium is an open-source web browser, powered by WebKit. This update upgrades Chromium to version 61.0.3163.79. Security Fix: Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Chromium to crash, execute arbitrary code, or disclose sensitive information when visited by the victim.

tags | advisory, web, arbitrary
systems | linux, redhat
advisories | CVE-2017-5111, CVE-2017-5112, CVE-2017-5113, CVE-2017-5114, CVE-2017-5115, CVE-2017-5116, CVE-2017-5117, CVE-2017-5118, CVE-2017-5119, CVE-2017-5120
MD5 | e5f10f1c240aebe1027c8f636d343b90
Slackware Security Advisory - bash Updates
Posted Sep 12, 2017
Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New bash packages are available for Slackware 13.1, 13.37, 14.0, 14.1, and 14.2 to fix security issues.

tags | advisory, bash
systems | linux, slackware
advisories | CVE-2016-0634, CVE-2016-7543
MD5 | 37c29c06a445182064da2a64eea8733b
Slackware Security Advisory - mariadb Updates
Posted Sep 12, 2017
Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New mariadb packages are available for Slackware 14.1 and 14.2 to fix security issues.

tags | advisory
systems | linux, slackware
advisories | CVE-2017-3636, CVE-2017-3641, CVE-2017-3653
MD5 | c53b53441a7ad97246e92b766b1d58b6
Kaspersky Privacy Cleaner DLL Hijacking
Posted Sep 12, 2017
Authored by Stefan Kanthak

Kaspersky Privacy Cleaner suffers from insecure transit, DLL hijacking, and various other security vulnerabilities.

tags | advisory, vulnerability
systems | windows
MD5 | 7085a92a7ce167e6f1ed9861cad134bb
WebKit JSC BytecodeGenerator::emitGetByVal Incorrect Optimization
Posted Sep 12, 2017
Authored by Google Security Research, lokihardt

WebKit JSC suffers from an incorrect optimization in BytecodeGenerator::emitGetByVal.

tags | exploit
advisories | CVE-2017-7061
MD5 | a195e7052be8a79b7fc787ec9487bbaf
Page 1 of 1
Back1Next

File Archive:

November 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    10 Files
  • 2
    Nov 2nd
    15 Files
  • 3
    Nov 3rd
    2 Files
  • 4
    Nov 4th
    2 Files
  • 5
    Nov 5th
    32 Files
  • 6
    Nov 6th
    27 Files
  • 7
    Nov 7th
    8 Files
  • 8
    Nov 8th
    9 Files
  • 9
    Nov 9th
    17 Files
  • 10
    Nov 10th
    2 Files
  • 11
    Nov 11th
    2 Files
  • 12
    Nov 12th
    33 Files
  • 13
    Nov 13th
    29 Files
  • 14
    Nov 14th
    23 Files
  • 15
    Nov 15th
    45 Files
  • 16
    Nov 16th
    11 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    0 Files
  • 19
    Nov 19th
    0 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close