Twenty Year Anniversary
Showing 1 - 18 of 18 RSS Feed

Files Date: 2018-02-09

Ubuntu Security Notice USN-3564-1
Posted Feb 9, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3564-1 - It was discovered that PostgreSQL incorrectly handled certain temp files. An attacker could possibly use this to access sensitive information.

tags | advisory
systems | linux, ubuntu
advisories | CVE-2018-1053
MD5 | 5af7d389ff830ec39d14beb69a978b63
Trend Micro IMSVA Management Portal 9.1.0.1600 Authentication Bypass
Posted Feb 9, 2018
Authored by Matthew Bergin | Site korelogic.com

Trend Micro IMSVA Management Portal version 9.1.0.1600 suffers from an authentication bypass vulnerability.

tags | exploit, bypass
MD5 | d82d45e882b2eb1faa1bb688364f31a9
NetEx HyperIP 6.1.0 Local File Inclusion
Posted Feb 9, 2018
Authored by Matthew Bergin | Site korelogic.com

NetEx HyperIP version 6.1.0 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | dc0775578f64cf741c26e424c44b03f5
NetEx HyperIP 6.1.0 Privilege Escalation
Posted Feb 9, 2018
Authored by Matthew Bergin | Site korelogic.com

NetEx HyperIP version 6.1.0 suffers from a privilege escalation vulnerability.

tags | exploit
MD5 | fee902572b3925955cbd9d64820c62f9
NetEx HyperIP 6.1.0 Post-Auth Command Execution
Posted Feb 9, 2018
Authored by Matthew Bergin | Site korelogic.com

NetEx HyperIP version 6.1.0 suffers from a post-authentication command execution vulnerability.

tags | exploit
MD5 | 80d93fa64c37b062c3c6cc3a74d00cdf
NetEx HyperIP 6.1.0 Authentication Bypass
Posted Feb 9, 2018
Authored by Matthew Bergin | Site korelogic.com

NetEx HyperIP version 6.1.0 suffers from an authentication bypass vulnerability.

tags | exploit, bypass
MD5 | 277d52048cffd60814568116ed7bd4b4
Bitcoin MLM Software 1.0.2 Cross Site Scripting
Posted Feb 9, 2018
Authored by Prasenjit Kanti Paul

Bitcoin MLM Software version 1.0.2 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-6862
MD5 | c8f316b16f2d69b85d3b90c2378ffb9b
Lawyer Search Script 1.0.2 Cross Site Scripting
Posted Feb 9, 2018
Authored by Prasenjit Kanti Paul

Lawyer Search Script version 1.0.2 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-6861
MD5 | 24d052a41c4bd375db805a94d81d1106
Red Hat Security Advisory 2018-0292-01
Posted Feb 9, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-0292-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix: An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions. There are three primary variants of the issue which differ in the way the speculative execution can be exploited. Note: This issue is present in hardware and cannot be fully fixed via software update. The updated kernel packages provide software mitigation for this hardware issue at a cost of potential performance penalty.

tags | advisory, kernel
systems | linux, redhat
advisories | CVE-2017-5715, CVE-2017-5753, CVE-2017-5754
MD5 | 45f9b9030ba7dd1e43a55cdeb2d12c06
Debian Security Advisory 4108-1
Posted Feb 9, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4108-1 - Calum Hutton and the Mailman team discovered a cross site scripting and information leak vulnerability in the user options page. A remote attacker could use a crafted URL to steal cookie information or to fish for whether a user is subscribed to a list with a private roster.

tags | advisory, remote, xss
systems | linux, debian
advisories | CVE-2018-5950
MD5 | 4f68db027d8c873d8be795e63da0a7e8
Debian Security Advisory 4105-2
Posted Feb 9, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4105-2 - A regression was detected in the previously issued fix for CVE-2018-6360. The patch released with DSA 4105-1 broke the feature of invoking mpv with raw YouTube ids. This update fixes this functionality issue.

tags | advisory
systems | linux, debian
advisories | CVE-2018-6360
MD5 | 001a1cafc6dd1b95ad3024dbfa259269
Naukri Clone Script 3.0.3 SQL Injection
Posted Feb 9, 2018
Authored by Borna Nematzadeh

Naukri Clone Script version 3.0.3 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | f484d627a368b58ae8207561caf79df8
Schools Alert Management Script 2.0.2 Arbitrary File Upload / Remote Code Execution
Posted Feb 9, 2018
Authored by Prasenjit Kanti Paul

Schools Alert Management Script version 2.0.2 suffers from code execution and remote file upload vulnerabilities.

tags | exploit, remote, vulnerability, code execution, file upload
advisories | CVE-2018-6860
MD5 | e9f0ef105c5c61f02c39346e049324cb
Facebook Clone Script 1.0.5 Cross Site Scripting
Posted Feb 9, 2018
Authored by Prasenjit Kanti Paul

Facebook Clone Script version 1.0.5 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-6858
MD5 | f8a51b158602c9d1aed55a4736d10031
JBoss 4.2.x / 4.3.x Information Disclosure
Posted Feb 9, 2018
Authored by Jameel Nabbo

JBoss versions 4.2.x and 4.3.x suffer from an information disclosure vulnerability.

tags | exploit, info disclosure
advisories | CVE-2010-1429
MD5 | 9f5131c1a5b01b84f7ba7060af142e67
Microsoft Skype DLL Hijacking
Posted Feb 9, 2018
Authored by Stefan Kanthak

Microsoft's Skype home-grown updater suffers from a dll hijacking vulnerability.

tags | exploit
systems | windows
MD5 | e378e1abd2417b24f1e060626ed42449
Fisheye / Crucible Remote Code Execution
Posted Feb 9, 2018
Authored by David Black | Site atlassian.com

Fisheye and Crucible suffer from a remote code execution vulnerability through OGNL double evaluation. Versions of Fisheye and Crucible before 4.4.5 (the fixed version for 4.4.x) and from 4.5.0 before 4.5.2 (the fixed version for 4.5.x) are affected by this vulnerability.

tags | advisory, remote, code execution
advisories | CVE-2017-16861
MD5 | 556b833c5e261bcfc86a761471ef339a
Formstack Webhook HMAC Failure
Posted Feb 9, 2018
Authored by Derrek Bertrand

Formstack's outbound webhook implementation fails to not print the HMAC secretin every request.

tags | advisory
MD5 | 2b17bafabea42cacf90ebc2d9f97ca4a
Page 1 of 1
Back1Next

Want To Donate?


Bitcoin: 18PFeCVLwpmaBuQqd5xAYZ8bZdvbyEWMmU

File Archive:

June 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jun 1st
    14 Files
  • 2
    Jun 2nd
    1 Files
  • 3
    Jun 3rd
    3 Files
  • 4
    Jun 4th
    18 Files
  • 5
    Jun 5th
    21 Files
  • 6
    Jun 6th
    8 Files
  • 7
    Jun 7th
    16 Files
  • 8
    Jun 8th
    18 Files
  • 9
    Jun 9th
    5 Files
  • 10
    Jun 10th
    2 Files
  • 11
    Jun 11th
    21 Files
  • 12
    Jun 12th
    32 Files
  • 13
    Jun 13th
    15 Files
  • 14
    Jun 14th
    16 Files
  • 15
    Jun 15th
    4 Files
  • 16
    Jun 16th
    1 Files
  • 17
    Jun 17th
    2 Files
  • 18
    Jun 18th
    15 Files
  • 19
    Jun 19th
    15 Files
  • 20
    Jun 20th
    15 Files
  • 21
    Jun 21st
    15 Files
  • 22
    Jun 22nd
    7 Files
  • 23
    Jun 23rd
    0 Files
  • 24
    Jun 24th
    0 Files
  • 25
    Jun 25th
    0 Files
  • 26
    Jun 26th
    0 Files
  • 27
    Jun 27th
    0 Files
  • 28
    Jun 28th
    0 Files
  • 29
    Jun 29th
    0 Files
  • 30
    Jun 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close