sqlmap is an open source command-line automatic SQL injection tool. Its goal is to detect and take advantage of SQL injection vulnerabilities in web applications. Once it detects one or more SQL injections on the target host, the user can choose among a variety of options to perform an extensive back-end database management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or user's specified DBMS tables/columns, run his own SQL statement, read or write either text or binary files on the file system, execute arbitrary commands on the operating system, establish an out-of-band stateful connection between the attacker box and the database server via Metasploit payload stager, database stored procedure buffer overflow exploitation or SMB relay attack and more.
39e0ef58365a5a0413d88dfcc0d1c210b465661cb97c8e5b42c1feba791d2453WordPress Admin Menu Tree Page View plugin version 2.6.9 suffers from cross site request forgery and privilege escalation vulnerabilities.
54f7b6532c1cd84aaaf814650b76fbee0bd6142457303dc6b6bf6f73f68e5a64Gentoo Linux Security Advisory 201801-9 - Multiple vulnerabilities have been found in WebkitGTK+, the worst of which may lead to arbitrary code execution. Versions less than 2.18.4:4 are affected.
bad9f872f7af73b318110871d8c1a8de4f361968b642261eb26ff6bad0286fe6Gentoo Linux Security Advisory 201801-8 - A vulnerability in MiniUPnPc might allow remote attackers to execute arbitrary code. Versions less than 2.0.20170509 are affected.
053ead498e8f21d494d13aa8af9d8f81816d53516a9a57b061381ce8c34d2bceGentoo Linux Security Advisory 201801-7 - A vulnerability has been found in Emacs which may allow for arbitrary command execution. Versions less than 23.4-r16:23 are affected.
09b388e4493df1ea12c90df417d34985d7b678bd9b074b7300fbabd65f65df7bGentoo Linux Security Advisory 201801-6 - A command injection vulnerability in 'Back in Time' may allow for the execution of arbitrary shell commands. Versions less than 1.1.24 are affected.
fa95a38cf86bca736d0886eee329773d5040d44784374b343db3ca9ffe417905Red Hat Security Advisory 2018-0061-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 52.5.2. Security Fix: Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running Thunderbird.
9391dc9240444a0f31ab3382c91b063b903412d893af681d0bf45657b9de00e4Gentoo Linux Security Advisory 201801-5 - A flaw has been discovered in OpenSSH which could allow a remote attacker to create zero-length files. Versions less than 7.5_p1-r3 are affected.
14de000d21f7e0cd3548508ee25e1fce2c416e19f43be0c0f7ebf24007e1511eGentoo Linux Security Advisory 201801-4 - A vulnerability in LibXcursor might allow remote attackers to execute arbitrary code. Versions less than 1.1.15 are affected.
efff3a503e29a07ef271d0b795a159954b5741ee7aa2b7b0a5ab60ef2fde0038Gentoo Linux Security Advisory 201801-3 - Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the execution of arbitrary code. Versions less than 63.0.3239.108 are affected.
087068316249fa56c335d5dc63d86d14b78f1a1e809867acc80c1286ca66a582Gentoo Linux Security Advisory 201801-2 - Multiple vulnerabilities have been found in OptiPNG, the worst of which may allow execution of arbitrary code. Versions less than 0.7.6-r2 are affected.
2710299668caa6e4ade73c163b6e8c5a3c4ae684a93062d2f345822c14501940Gentoo Linux Security Advisory 201801-1 - Multiple vulnerabilities have been found in Binutils, the worst of which may allow remote attackers to cause a Denial of Service condition. Versions less than 2.29.1-r1 are affected.
7a6a394a948b479104bfd4c658ae414e36992a7e77bedda3052cd69c37bc7e7eDebian Linux Security Advisory 4079-1 - Multiple vulnerabilities were discovered in the poppler PDF rendering library, which could result in denial of service or the execution of arbitrary code if a malformed PDF file is processed.
30675b65988008d5c279ccafa7a10476832dfbd9c38461f258f8ecf9fe48805cWordPress CMS Tree Page View plugin version 1.4 suffers from cross site request forgery and privilege escalation vulnerabilities.
9da8b97bfb11f81df957f6883a70dc78577a992ef66f79b945ef28c14fcb1b46WordPress LearnDash plugin version 2.5.3 suffers from an arbitrary file upload vulnerability.
152d6af368abc78f213169886a9e2f41f4db9d80b89868f8d4791b3d79a6e139Synology DiskStation Manager (DMS) versions prior to 6.1.3-15152 suffer from a forget_passwd.cgi user enumeration vulnerability.
badeff38c0b5be1a4c2359ece25657ca8c8f3d34316f5218270d5f7e18e562d5WordPress Social Media Widget by Acurax plugin version 3.2.5 suffers from a cross site request forgery vulnerability.
7ceb247e5bb579ce3202b3bf1b6f8e0b818d2d9c4ec44ab77f330c5c8ab865b7
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed