exploit the possibilities
Showing 1 - 7 of 7 RSS Feed

Files Date: 2018-05-14

Ubuntu Security Notice USN-3646-1
Posted May 14, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3646-1 - It was discovered that PHP incorrectly handled opcache access controls when configured to use PHP-FPM. A local user could possibly use this issue to obtain sensitive information from another user's PHP applications. It was discovered that the PHP iconv stream filter incorrect handled certain invalid multibyte sequences. A remote attacker could possibly use this issue to cause PHP to hang, resulting in a denial of service. Various other issues were also addressed.

tags | advisory, remote, denial of service, local, php
systems | linux, ubuntu
advisories | CVE-2018-10545, CVE-2018-10546, CVE-2018-10547, CVE-2018-10548, CVE-2018-10549
MD5 | 671fb2061c1fff15655f741886b1e10a
MyBiz MyProcureNet 5.0.0 File Upload / Cross Site Scripting
Posted May 14, 2018
Authored by Fikri Fadzil, Wan Ikram, Jasveer Singh, Ahmad Ramadhan Amizudin | Site sec-consult.com

MyBiz MyProcureNet version 5.0.0 suffers from remote file upload and cross site scripting vulnerabilities.

tags | advisory, remote, vulnerability, xss, file upload
advisories | CVE-2018-11091, CVE-2018-11090
MD5 | 9d259792840d984bdc75e2b482b86e96
xls2csv 0.95 Buffer Overflow
Posted May 14, 2018
Authored by nafiez

xls2csv version 0.95 suffers from a buffer overflow vulnerability.

tags | exploit, overflow
MD5 | f750738e8735e0b33c3f768f0151558d
GD bbPress 2.5 Cross Site Scripting
Posted May 14, 2018
Authored by Luigi Gubello

GD bbPress versions 2.5 and below suffer from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 087c655ff43ee9dfeea459aa735151b0
ProjectPier 0.8.8 SQL Injection / Authentication Bypass / RFI
Posted May 14, 2018
Authored by Imre Rad

ProjectPier versions 0.8.8 and below suffer from remote file inclusion, authentication bypass, remote shell upload, and remote SQL injection vulnerabilities.

tags | exploit, remote, shell, vulnerability, sql injection, bypass, file inclusion
advisories | CVE-2018-10759, CVE-2018-10760
MD5 | 981d011a590304ccd6de6e3510500b73
Calamp.com Incorrect Privilege Assignment
Posted May 14, 2018
Authored by Vangelis Stykas, George Lavdanis

Calamp.com suffers from an incorrect privilege assignment that could lead to full user compromise.

tags | exploit
MD5 | 669486a177cbb9617e6004e6bdde10e7
IBM Flashsystem / Storwize CSRF / Arbitrary File Read / Information Disclosure
Posted May 14, 2018
Authored by Jan Bee, Sebastian Neuner

Vulnerabilities were identified in the IBM Flashsystem 840, IBM Flashsystem 900 and IBM Storwize V7000. They include cross site request forgery, arbitrary file read, unauthenticated access, and various other vulnerabilities.

tags | exploit, arbitrary, vulnerability, csrf
advisories | CVE-2018-1433, CVE-2018-1434, CVE-2018-1438, CVE-2018-1461, CVE-2018-1462, CVE-2018-1463, CVE-2018-1464, CVE-2018-1465, CVE-2018-1466, CVE-2018-1467, CVE-2018-1495
MD5 | 982ee9389da127275dfc529c16ee33e4
Page 1 of 1
Back1Next

File Archive:

October 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    25 Files
  • 2
    Oct 2nd
    13 Files
  • 3
    Oct 3rd
    1 Files
  • 4
    Oct 4th
    1 Files
  • 5
    Oct 5th
    15 Files
  • 6
    Oct 6th
    15 Files
  • 7
    Oct 7th
    15 Files
  • 8
    Oct 8th
    11 Files
  • 9
    Oct 9th
    3 Files
  • 10
    Oct 10th
    1 Files
  • 11
    Oct 11th
    1 Files
  • 12
    Oct 12th
    8 Files
  • 13
    Oct 13th
    12 Files
  • 14
    Oct 14th
    23 Files
  • 15
    Oct 15th
    4 Files
  • 16
    Oct 16th
    13 Files
  • 17
    Oct 17th
    1 Files
  • 18
    Oct 18th
    1 Files
  • 19
    Oct 19th
    27 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close