Twenty Year Anniversary
Showing 1 - 9 of 9 RSS Feed

Files Date: 2017-12-22

Oracle MySQL UDF Payload Execution
Posted Dec 22, 2017
Authored by Tod Beardsley, Bernardo Damele, h00die | Site metasploit.com

This Metasploit module creates and enables a custom UDF (user defined function) on the target host via the SELECT ... into DUMPFILE method of binary injection. On default Microsoft Windows installations of MySQL versions 5.5.9 and below, directory write permissions not enforced, and the MySQL service runs as LocalSystem. NOTE: This Metasploit module will leave a payload executable on the target system when the attack is finished, as well as the UDF DLL, and will define or redefine sys_eval() and sys_exec() functions.

tags | exploit
systems | windows
MD5 | bcf3d2156b2ec4dfa9eb9e73784fb039
eBPF Arbitrary Read/Write Via Incorrect Range Tracking
Posted Dec 22, 2017
Authored by Jann Horn, Google Security Research

eBPF suffers from an arbitrary read and write vulnerability via incorrect range tracking.

tags | exploit, arbitrary
MD5 | ad6516e5054737ab0ef7abdefd3ba79b
Joomla JB Tour Booking 2.2.2 SQL Injection
Posted Dec 22, 2017
Authored by Bilal Kardadou

Joomla JB Tour Booking extension 2.2.2 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 2ba4114e2429bf92db11ac3c63ee15a0
Joomla JB Bus 2.3.0 SQL Injection
Posted Dec 22, 2017
Authored by Bilal Kardadou

Joomla JB Bus extension version 2.3.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 01129b11df44a25e556a0215f9e2ba59
Roommate And Real Estate Listing Classified Response 1.0 XSS
Posted Dec 22, 2017
Authored by ShanoWeb

Roommate and Real Estate Listing Classified Response version 1.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | bf8a3c42958bcf690cab862f0766410d
phpMars 1.0.9 Cross Site Scripting
Posted Dec 22, 2017
Authored by ShanoWeb

phpMars version 1.0.9 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | d1205a24c4da3d1ec41231258fdcf33e
Online Hotel Booking System Pro 1.3 Cross Site Scripting
Posted Dec 22, 2017
Authored by ShanoWeb

Online Hotel Booking System Pro version 1.3 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 80b3a97b3c233ef7570ac0a93e46095a
Trend Micro Smart Protection Server 3.2 XSS / Access Control / Disclosure
Posted Dec 22, 2017
Authored by Core Security Technologies, Maximiliano Vidal, Leandro Barragan | Site coresecurity.com

Trend Micro Smart Protection Server version 3.2 suffers from access control bypass, cross site scripting, information disclosure, and various other vulnerabilities.

tags | exploit, vulnerability, xss, info disclosure
advisories | CVE-2017-11398, CVE-2017-14094, CVE-2017-14095, CVE-2017-14096, CVE-2017-14097
MD5 | 0e10fe92b1e5418787878b2ed8d69361
ServersCheck Monitoring Software Cross Site Scripting
Posted Dec 22, 2017
Authored by Aloyce J. Makalanga

ServersCheck Monitoring Software versions prior to 14.2.3 suffers from a cross site scripting vulnerability.

tags | advisory, xss
advisories | CVE-2017-17832
MD5 | 5d726e783e063a527c15ce6c9c68493a
Page 1 of 1
Back1Next

File Archive:

November 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    10 Files
  • 2
    Nov 2nd
    15 Files
  • 3
    Nov 3rd
    2 Files
  • 4
    Nov 4th
    2 Files
  • 5
    Nov 5th
    32 Files
  • 6
    Nov 6th
    27 Files
  • 7
    Nov 7th
    8 Files
  • 8
    Nov 8th
    9 Files
  • 9
    Nov 9th
    17 Files
  • 10
    Nov 10th
    2 Files
  • 11
    Nov 11th
    2 Files
  • 12
    Nov 12th
    33 Files
  • 13
    Nov 13th
    29 Files
  • 14
    Nov 14th
    23 Files
  • 15
    Nov 15th
    0 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    0 Files
  • 19
    Nov 19th
    0 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close