Exploit the possiblities
Showing 1 - 25 of 32 RSS Feed

Files Date: 2018-01-12

Transmission RPC Session-ID Mechanism Design Flaw
Posted Jan 12, 2018
Authored by Tavis Ormandy, Google Security Research

The Transmission bittorrent client suffers from an RPC session-id mechanism design flaw.

tags | exploit
MD5 | e90bb59ff19cae369a362b93ce42c18d
PyroBatchFTP Buffer Overflow
Posted Jan 12, 2018
Authored by Manuel Garcia Cardenas

PyroBatchFTP versions prior to 3.19 suffer from a buffer overflow vulnerability.

tags | exploit, overflow
MD5 | 0ab46277515c18f17250ed5562af7c8c
Taxi Booking Script 1.0 Cross Site Scripting
Posted Jan 12, 2018
Authored by Tauco

Taxi Booking Script version 1.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | e3f23c5191329312ae2f6f8a29959aa2
Xnami Image Sharing 1.0 Cross Site Scripting
Posted Jan 12, 2018
Authored by Dennis Veninga

Xnami Image Sharing version 1.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-5370
MD5 | e6902aa10eb0f36c24ccca1455b3e5ed
Debian Security Advisory 4084-1
Posted Jan 12, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4084-1 - It was discovered that gifsicle, a tool for manipulating GIF image files, contained a flaw that could lead to arbitrary code execution.

tags | advisory, arbitrary, code execution
systems | linux, debian
advisories | CVE-2017-1000421
MD5 | 935c5bb19560c8989f888c418a53114b
SonicWall GMS 8.1 Filter Bypass / Input Validation
Posted Jan 12, 2018
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

SonicWall GMS version 8.1 suffers from filter bypass and input validation vulnerabilities.

tags | exploit, vulnerability
MD5 | 9e83435ae4f55dce2b6b81e93197ec6d
Magento Commerce Server-Side Request Forgery
Posted Jan 12, 2018
Site vulnerability-lab.com

Magento Commerce suffers from a server-side request forgery vulnerability.

tags | exploit
MD5 | 783fd7d75d31af5e71b5e5f677deccbe
Kentico CMS 11.0 Stack Buffer Overflow
Posted Jan 12, 2018
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

Kentico CMS version 11.0 suffers from stack buffer overflow vulnerability.

tags | exploit, overflow
advisories | CVE-2018-5282
MD5 | 23331928e3abbd18d107c100571177c0
Magento Connect T1 Cross Site Scripting
Posted Jan 12, 2018
Site vulnerability-lab.com

Magento Connect T1 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | 2bc228e787ca4ce725d790260af1ba53
Piwigo 2.8.2 / 2.9.2 Cross Site Scripting
Posted Jan 12, 2018
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

Piwigo CMS versions 2.8.2 and 2.9.2 suffer from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 56e16aae7f141f2c2e9cbdac157b0e43
MagicSpam 2.0.13 Insecure File Permission
Posted Jan 12, 2018
Authored by Marco Marsala | Site vulnerability-lab.com

MagicSpam version 2.0.13 suffers from an insecure file permission vulnerability.

tags | exploit
MD5 | 2d78133304b97086937f9b94d1e8ecf4
Flash Operator Panel 2.31.03 Command Execution
Posted Jan 12, 2018
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

Flash Operator Panel version 2.31.03 suffers from a command execution vulnerability.

tags | exploit
MD5 | 82f481cffd6af5326f66a863d2dab7a6
ZyXEL P-660HW UDP Denial Of Service
Posted Jan 12, 2018
Authored by Hosein Askari

ZyXEL P-660HW suffers from a UDP fragmentation denial of service vulnerability.

tags | exploit, denial of service, udp
advisories | CVE-2018-5330
MD5 | 540f62d029470090796859bb2a8aeed4
Zimbra Collaboration Suite Cross Site Scripting
Posted Jan 12, 2018
Authored by Alessandro Zala, Damian Pfammatter

Zimbra Collaboration Suite suffers from a stored cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2017-8802
MD5 | 4d4d653c1cd36ed4bc5e1673562b2892
eBPF 4.9-stable Verifier Bug Backported
Posted Jan 12, 2018
Authored by Jann Horn, Google Security Research

eBPF had the verifier bug backported to version 4.9-stable.

tags | exploit
MD5 | 8a1c22a5152b26d19ce1cffd65c19ab9
.NET Instrumentation Via MSIL Bytecode Injection
Posted Jan 12, 2018
Authored by phrack, Antonio Parata

Whitepaper from Phrack called .NET Instrumentation via MSIL bytecode injection.

tags | magazine
MD5 | f76a6f529a8a5627abf456425b8d4c30
macOS process_policy Stack Leak
Posted Jan 12, 2018
Authored by Jann Horn, Google Security Research

macOS suffers from a process_policy stack leak through an uninitialized field.

tags | exploit
advisories | CVE-2017-7154
MD5 | 087461a94f1e181ee115eef15d6fd864
Linux/x86-64 IPTables Flush Shellcode
Posted Jan 12, 2018
Authored by 0x4ndr3

43 bytes small Linux/x86-64 execve("/sbin/iptables", ["/sbin/iptables", "-F"], NULL) shellcode.

tags | x86, shellcode
systems | linux
MD5 | b6402eb0799fd8fe40b5aff352f7747a
Microsoft Edge Chakra AppendLeftOverItemsFromEndSegment Out-Of-Bounds Read
Posted Jan 12, 2018
Authored by Google Security Research, lokihardt

Microsoft Edge Chakra suffers from an out-of-bounds read in AppendLeftOverItemsFromEndSegment.

tags | advisory
advisories | CVE-2018-0767
MD5 | 6cfc877917d7438791ce00f168c6b410
Windows Kernel Exploitation Tutorial Part 5: NULL Pointer Dereference
Posted Jan 12, 2018
Authored by rootkit

Whitepaper called Windows Kernel Exploitation Tutorial Part 5: NULL Pointer Dereference.

tags | paper, kernel
systems | windows
MD5 | 6d619680559450b20c39f2d197102acb
Linux/x86-64 Add Mapping In /etc/hosts Shellcode
Posted Jan 12, 2018
Authored by 0x4ndr3

96 bytes small Linux/x86-64 add mapping (127.1.1.1 google.lk) in /etc/hosts shellcode.

tags | x86, shellcode
systems | linux
MD5 | 58571c81a05ae0a8e172b90ba5bfe997
Linux/x86-64 /bin/sh Shellcode
Posted Jan 12, 2018
Authored by 0x4ndr3

24 bytes small Linux/x86-64 execute /bin/sh shellcode.

tags | x86, shellcode
systems | linux
MD5 | 50f820da8824e476bf8fe8000f27344b
Wireshark Analyzer 2.4.4
Posted Jan 12, 2018
Authored by Gerald Combs | Site wireshark.org

Wireshark is a GTK+-based network protocol analyzer that lets you capture and interactively browse the contents of network frames. The goal of the project is to create a commercial-quality analyzer for Unix and Win32 and to give Wireshark features that are missing from closed-source sniffers.

Changes: Multiple fixes including various security issues being addressed. Various other updates.
tags | tool, sniffer, protocol
systems | windows, unix
advisories | CVE-2018-5334, CVE-2018-5335, CVE-2018-5336
MD5 | 660db152b7d6974c0e2ff12aa8a4fce6
SAP NetWeaver J2EE Engine 7.40 SQL Injection
Posted Jan 12, 2018
Authored by Vahagn Vardanyan

SAP NetWeaver J2EE Engine version 7.40 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2016-1910, CVE-2016-2386, CVE-2016-2388
MD5 | 6b73d2dd9de02a95a19540c46ce2d138
D-Link Routers 110/412/615/815 Arbitrary Code Execution
Posted Jan 12, 2018
Authored by Cr0n1c

D-Link routers 110/412/615/815 versions prior to 1.03 suffer from a service.cgi arbitrary code execution vulnerability.

tags | exploit, arbitrary, cgi, code execution
MD5 | 3d62c7e0cb26b053130f3ca201d0f494
Page 1 of 2
Back12Next

Want To Donate?


Bitcoin: 18PFeCVLwpmaBuQqd5xAYZ8bZdvbyEWMmU

File Archive:

February 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Feb 1st
    15 Files
  • 2
    Feb 2nd
    15 Files
  • 3
    Feb 3rd
    15 Files
  • 4
    Feb 4th
    13 Files
  • 5
    Feb 5th
    16 Files
  • 6
    Feb 6th
    15 Files
  • 7
    Feb 7th
    15 Files
  • 8
    Feb 8th
    15 Files
  • 9
    Feb 9th
    18 Files
  • 10
    Feb 10th
    8 Files
  • 11
    Feb 11th
    8 Files
  • 12
    Feb 12th
    17 Files
  • 13
    Feb 13th
    15 Files
  • 14
    Feb 14th
    15 Files
  • 15
    Feb 15th
    17 Files
  • 16
    Feb 16th
    18 Files
  • 17
    Feb 17th
    37 Files
  • 18
    Feb 18th
    2 Files
  • 19
    Feb 19th
    16 Files
  • 20
    Feb 20th
    16 Files
  • 21
    Feb 21st
    15 Files
  • 22
    Feb 22nd
    16 Files
  • 23
    Feb 23rd
    31 Files
  • 24
    Feb 24th
    0 Files
  • 25
    Feb 25th
    0 Files
  • 26
    Feb 26th
    0 Files
  • 27
    Feb 27th
    0 Files
  • 28
    Feb 28th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close