Twenty Year Anniversary
Showing 1 - 18 of 18 RSS Feed

Files Date: 2018-01-28

Oracle WebLogic wls-wsat Component Deserialization Remote Code Execution
Posted Jan 28, 2018
Authored by Alexey Tyurin, Federico Dotta, Kevin Kirsche, Luffin | Site metasploit.com

The Oracle WebLogic WLS WSAT component is vulnerable to an XML deserialization remote code execution vulnerability. Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.1.0 and 12.2.1.2.0.

tags | exploit, remote, code execution
advisories | CVE-2017-10271
MD5 | 2daa838b9b2485cace670442af754ec5
Lynis Auditing Tool 2.6.1
Posted Jan 28, 2018
Authored by Michael Boelen | Site cisofy.com

Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.

Changes: Tests can have more than 1 required OS (e.g. Linux OR NetBSD). Added 'system-groups' option to profile (Enterprise users). Overhaul of default profile and migrate to new style (setting=value). Show warning if old profile options are used. Improved detection of binaries. New group 'usb' for tests related to USB devices.
tags | tool, scanner
systems | unix
MD5 | 0159e777444445098ce4dbcaf4cadf27
Blue Team Training Toolkit (BT3) 2.6
Posted Jan 28, 2018
Authored by Juan J. Guelfo | Site encripto.no

Blue Team Training Toolkit (BT3) is an attempt to introduce improvements in current computer network defense analysis training. Based on adversary replication techniques, and with reusability in mind, BT3 allows individuals and organizations to create realistic computer attack scenarios, while reducing infrastructure costs, implementation time and risk. The Blue Team Training Toolkit is written in Python, and it includes the latest versions of Encripto's Maligno and Pcapteller.

Changes: This release introduces multiple new API-related commands, UI improvements and other minor adjustments.
tags | tool, python
systems | unix
MD5 | 1145bab71d9f4d1c2dcc6fc8703d5705
Joomla! Jtag Members Directory 5.3.7 Arbitrary File Download
Posted Jan 28, 2018
Authored by Ihsan Sencan

Joomla! Jtag Members Directory component version 5.3.7 suffers from an arbitrary file download vulnerability.

tags | exploit, arbitrary, info disclosure
advisories | CVE-2018-6008
MD5 | 22d9fe4f9b22dd59ed4c484b95c5c3b0
Vastal I-Tech Facebook Clone 2.9.9 SQL Injection
Posted Jan 28, 2018
Authored by Ihsan Sencan

Vastal I-Tech Facebook Clone version 2.9.9 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | d2361b0ea4c8c02889d2a3df29dff0a2
Joomla! JS Support Ticket 1.1.0 Cross Site Request Forgery
Posted Jan 28, 2018
Authored by Ihsan Sencan

Joomla! JS Support Ticket component version 1.1.0 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2018-6007
MD5 | 652967ee129e889e03e616980596a172
Rapid7 Nexpose 6.4.65 Cross Site Request Forgery
Posted Jan 28, 2018
Authored by Shwetabh Vishnoi

Rapid7 Nexpose version 6.4.65 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2017-5264
MD5 | 7912eb3f6c0edf7ab1245a3b608deaa7
Task Rabbit Clone 1.0 SQL Injection
Posted Jan 28, 2018
Authored by Ihsan Sencan

Task Rabbit Clone version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | b628904ff9a596452e134ff1f9a8c0ac
Multilanguage Real Estate MLM Script 3.0 SQL Injection
Posted Jan 28, 2018
Authored by Ihsan Sencan

Multilanguage Real Estate MLM Script version 3.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | eb1d9c6b4d5e71b25b7ad175c9adf9d3
Hot Scripts Clone Script 1.0 SQL Injection
Posted Jan 28, 2018
Authored by Ihsan Sencan

Hot Scripts Clone Script version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | dd11ac53b70d4ac657bf655dc6ddd9e1
TSiteBuilder 1.0 SQL Injection
Posted Jan 28, 2018
Authored by Ihsan Sencan

TSiteBuilder version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 496b92a8e463e0e72fd600a2082013e6
PACSOne Server 6.6.2 DICOM Web Viewer Directory Traversal
Posted Jan 28, 2018
Authored by Carlos Avila

PACSOne Server version 6.6.2 DICOM Web Viewer suffers from a directory traversal vulnerability.

tags | exploit, web, file inclusion
MD5 | aab54ae9c1c72eafc7ac0fa76de6103c
PACSOne Server 6.6.2 DICOM Web Viewer SQL Injection
Posted Jan 28, 2018
Authored by Carlos Avila

PACSOne Server version 6.6.2 DICOM Web Viewer suffers from a remote SQL injection vulnerability.

tags | exploit, remote, web, sql injection
MD5 | a723260c11419cbbff27fef292923863
Trend Micro Threat Discovery Appliance 2.6.1062r1 dlp_policy_upload.cgi Remote Code Execution
Posted Jan 28, 2018
Authored by mr_me

Trend Micro Threat Discovery Appliance versions 2.6.1062r1 and below suffer from a dlp_policy_upload.cgi remote code execution vulnerability.

tags | exploit, remote, cgi, code execution
MD5 | f56935b7186a1bb0e06c683d70145e04
Gnew 2018.1 Cross Site Request Forgery
Posted Jan 28, 2018
Authored by Cyril Vallicari

Gnew version 2018.1 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 67b78cd2ef8fbe4e19f13e83e5b8e4ee
Linux/ARM Reverse TCP Shell Null Free Shellcode
Posted Jan 28, 2018
Authored by rtmcx

80 byte small Linux/ARM reverse TCP shell (192.168.1.1:4444/TCP) null-free shellcode.

tags | shell, tcp, shellcode
systems | linux
MD5 | ca358c6e2e10a456f686560467fee49d
Linux/x86 Egghunter Shellcode
Posted Jan 28, 2018
Authored by Nipun Jaswal

12 bytes small Linux/x86 egghunter shellcode.

tags | x86, shellcode
systems | linux
MD5 | 4c0527aa8ca0d3c599ef7e90b98b4809
Netis-WF2419 Cross Site Request Forgery
Posted Jan 28, 2018
Authored by Sajibe Kanti

Netis-WF2419 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 6fcbb10947fa1faf2f083280486f171b
Page 1 of 1
Back1Next

File Archive:

October 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    26 Files
  • 2
    Oct 2nd
    15 Files
  • 3
    Oct 3rd
    15 Files
  • 4
    Oct 4th
    15 Files
  • 5
    Oct 5th
    15 Files
  • 6
    Oct 6th
    2 Files
  • 7
    Oct 7th
    3 Files
  • 8
    Oct 8th
    23 Files
  • 9
    Oct 9th
    16 Files
  • 10
    Oct 10th
    15 Files
  • 11
    Oct 11th
    19 Files
  • 12
    Oct 12th
    16 Files
  • 13
    Oct 13th
    2 Files
  • 14
    Oct 14th
    2 Files
  • 15
    Oct 15th
    15 Files
  • 16
    Oct 16th
    20 Files
  • 17
    Oct 17th
    19 Files
  • 18
    Oct 18th
    21 Files
  • 19
    Oct 19th
    16 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close