Twenty Year Anniversary
Showing 1 - 17 of 17 RSS Feed

Files Date: 2018-01-08

SQLMAP - Automatic SQL Injection Tool 1.2
Posted Jan 8, 2018
Authored by Bernardo Damele | Site sqlmap.sourceforge.net

sqlmap is an open source command-line automatic SQL injection tool. Its goal is to detect and take advantage of SQL injection vulnerabilities in web applications. Once it detects one or more SQL injections on the target host, the user can choose among a variety of options to perform an extensive back-end database management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or user's specified DBMS tables/columns, run his own SQL statement, read or write either text or binary files on the file system, execute arbitrary commands on the operating system, establish an out-of-band stateful connection between the attacker box and the database server via Metasploit payload stager, database stored procedure buffer overflow exploitation or SMB relay attack and more.

Changes: Various updates.
tags | tool, web, overflow, arbitrary, vulnerability, sql injection
systems | unix
MD5 | 862558365029f485db2aaad254bfa469
WordPress Admin Menu Tree Page View 2.6.9 CSRF / Privilege Escalation
Posted Jan 8, 2018
Authored by panVagenas

WordPress Admin Menu Tree Page View plugin version 2.6.9 suffers from cross site request forgery and privilege escalation vulnerabilities.

tags | exploit, vulnerability, csrf
MD5 | d90e37e348f554a84c5781437279668e
Gentoo Linux Security Advisory 201801-09
Posted Jan 8, 2018
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201801-9 - Multiple vulnerabilities have been found in WebkitGTK+, the worst of which may lead to arbitrary code execution. Versions less than 2.18.4:4 are affected.

tags | advisory, arbitrary, vulnerability, code execution
systems | linux, gentoo
advisories | CVE-2017-13856, CVE-2017-13866, CVE-2017-13870, CVE-2017-7156, CVE-2017-7157
MD5 | 7a69897bcc45af80b685f85aeeba037a
Gentoo Linux Security Advisory 201801-08
Posted Jan 8, 2018
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201801-8 - A vulnerability in MiniUPnPc might allow remote attackers to execute arbitrary code. Versions less than 2.0.20170509 are affected.

tags | advisory, remote, arbitrary
systems | linux, gentoo
advisories | CVE-2015-6031
MD5 | b66a9b0df42ed88519f4fcbcd1874ba3
Gentoo Linux Security Advisory 201801-07
Posted Jan 8, 2018
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201801-7 - A vulnerability has been found in Emacs which may allow for arbitrary command execution. Versions less than 23.4-r16:23 are affected.

tags | advisory, arbitrary
systems | linux, gentoo
advisories | CVE-2017-14482
MD5 | 99abf29efdb0acb5706456aa6b852ad5
Gentoo Linux Security Advisory 201801-06
Posted Jan 8, 2018
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201801-6 - A command injection vulnerability in 'Back in Time' may allow for the execution of arbitrary shell commands. Versions less than 1.1.24 are affected.

tags | advisory, arbitrary, shell
systems | linux, gentoo
advisories | CVE-2017-16667
MD5 | 667f2f846b80b660a5b921b15407001a
Red Hat Security Advisory 2018-0061-01
Posted Jan 8, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-0061-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 52.5.2. Security Fix: Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running Thunderbird.

tags | advisory, web, arbitrary
systems | linux, redhat
advisories | CVE-2017-7829, CVE-2017-7846, CVE-2017-7847, CVE-2017-7848
MD5 | 57ab4436794ccc7f5375e140dae03e15
Gentoo Linux Security Advisory 201801-05
Posted Jan 8, 2018
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201801-5 - A flaw has been discovered in OpenSSH which could allow a remote attacker to create zero-length files. Versions less than 7.5_p1-r3 are affected.

tags | advisory, remote
systems | linux, gentoo
advisories | CVE-2017-15906
MD5 | 2b9e35b7aed080ecfea4d3577efbf786
Gentoo Linux Security Advisory 201801-04
Posted Jan 8, 2018
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201801-4 - A vulnerability in LibXcursor might allow remote attackers to execute arbitrary code. Versions less than 1.1.15 are affected.

tags | advisory, remote, arbitrary
systems | linux, gentoo
advisories | CVE-2017-16612
MD5 | 7cda63ba854417dce0e94e8e326ba58d
Gentoo Linux Security Advisory 201801-03
Posted Jan 8, 2018
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201801-3 - Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the execution of arbitrary code. Versions less than 63.0.3239.108 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2017-15407, CVE-2017-15408, CVE-2017-15409, CVE-2017-15410
MD5 | 4846caaa7bf97d56343aa5b6148633cb
Gentoo Linux Security Advisory 201801-02
Posted Jan 8, 2018
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201801-2 - Multiple vulnerabilities have been found in OptiPNG, the worst of which may allow execution of arbitrary code. Versions less than 0.7.6-r2 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2017-1000229, CVE-2017-16938
MD5 | 8a39797c412de0c8652a13e263b09781
Gentoo Linux Security Advisory 201801-01
Posted Jan 8, 2018
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201801-1 - Multiple vulnerabilities have been found in Binutils, the worst of which may allow remote attackers to cause a Denial of Service condition. Versions less than 2.29.1-r1 are affected.

tags | advisory, remote, denial of service, vulnerability
systems | linux, gentoo
advisories | CVE-2017-12456, CVE-2017-12799, CVE-2017-12967, CVE-2017-14128, CVE-2017-14129, CVE-2017-14130, CVE-2017-14333, CVE-2017-15023
MD5 | eb026fa7342bc9503b06882f83cab73f
Debian Security Advisory 4079-1
Posted Jan 8, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4079-1 - Multiple vulnerabilities were discovered in the poppler PDF rendering library, which could result in denial of service or the execution of arbitrary code if a malformed PDF file is processed.

tags | advisory, denial of service, arbitrary, vulnerability
systems | linux, debian
advisories | CVE-2017-14517, CVE-2017-14518, CVE-2017-14519, CVE-2017-14520, CVE-2017-14975, CVE-2017-14976, CVE-2017-14977, CVE-2017-15565, CVE-2017-9406, CVE-2017-9408, CVE-2017-9775, CVE-2017-9776, CVE-2017-9865
MD5 | 4e6b6686f8a7ad9cf6aa121d43d477c0
WordPress CMS Tree Page View 1.4 CSRF / Privilege Escalation
Posted Jan 8, 2018
Authored by panVagenas

WordPress CMS Tree Page View plugin version 1.4 suffers from cross site request forgery and privilege escalation vulnerabilities.

tags | exploit, vulnerability, csrf
MD5 | 2631128536ccd68e83fc19a7c831a751
WordPress LearnDash 2.5.3 File Upload
Posted Jan 8, 2018
Authored by NinTechNet

WordPress LearnDash plugin version 2.5.3 suffers from an arbitrary file upload vulnerability.

tags | exploit, arbitrary, file upload
MD5 | 16db1a477dfec3557bd4c33fa68145e7
Synology DiskStation Manager (DSM) User Enumeration
Posted Jan 8, 2018
Authored by Steve Kaun

Synology DiskStation Manager (DMS) versions prior to 6.1.3-15152 suffer from a forget_passwd.cgi user enumeration vulnerability.

tags | exploit, cgi
advisories | CVE-2017-9554
MD5 | c48c4c4573098defd903d29ddeae9f02
WordPress Social Media Widget By Acurax 3.2.5 Cross Site Request Forgery
Posted Jan 8, 2018
Authored by panVagenas

WordPress Social Media Widget by Acurax plugin version 3.2.5 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 6995e4045690a16a01eba9a082a3ca2d
Page 1 of 1
Back1Next

File Archive:

December 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    11 Files
  • 2
    Dec 2nd
    1 Files
  • 3
    Dec 3rd
    18 Files
  • 4
    Dec 4th
    40 Files
  • 5
    Dec 5th
    16 Files
  • 6
    Dec 6th
    50 Files
  • 7
    Dec 7th
    12 Files
  • 8
    Dec 8th
    1 Files
  • 9
    Dec 9th
    1 Files
  • 10
    Dec 10th
    15 Files
  • 11
    Dec 11th
    30 Files
  • 12
    Dec 12th
    25 Files
  • 13
    Dec 13th
    15 Files
  • 14
    Dec 14th
    14 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close