Twenty Year Anniversary
Showing 1 - 15 of 15 RSS Feed

Files Date: 2018-05-21

Teradek VidiU Pro 3.0.3 Change Password Cross Site Request Forgery
Posted May 21, 2018
Authored by LiquidWorm | Site zeroscience.mk

Teradek VidiU Pro version 3.0.3 change password cross site request forgery exploit.

tags | exploit, csrf
MD5 | 115198b7fedbb857773cdf3075ec2c62
GitBucket 4.23.1 Remote Code Execution / Arbitrary File Read
Posted May 21, 2018
Authored by Kacper Szurek

GitBucket version 4.23.1 suffers from remote code execution and arbitrary file read vulnerabilities.

tags | exploit, remote, arbitrary, vulnerability, code execution
MD5 | 11844999aa0564bbefc3be466336456d
Ubuntu Security Notice USN-3653-1
Posted May 21, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3653-1 - Jann Horn and Ken Johnson discovered that microprocessors utilizing speculative execution of a memory read may allow unauthorized memory reads via a sidechannel attack. This flaw is known as Spectre Variant 4. A local attacker could use this to expose sensitive information, including kernel memory. It was discovered that the netlink subsystem in the Linux kernel did not properly restrict observations of netlink messages to the appropriate net namespace. A local attacker could use this to expose sensitive information. Various other issues were also addressed.

tags | advisory, kernel, local
systems | linux, ubuntu
advisories | CVE-2017-17449, CVE-2017-17975, CVE-2017-18203, CVE-2017-18208, CVE-2018-3639, CVE-2018-8822
MD5 | d2121073ebaaf6b8711069fd05c71d2c
Ubuntu Security Notice USN-3652-1
Posted May 21, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3652-1 - Jann Horn and Ken Johnson discovered that microprocessors utilizing speculative execution of a memory read may allow unauthorized memory reads via a sidechannel attack. This flaw is known as Spectre Variant 4. A local attacker could use this to expose sensitive information, including kernel memory.

tags | advisory, kernel, local
systems | linux, ubuntu
advisories | CVE-2018-3639
MD5 | 40cb02f366a158bd0e7c8355d9613112
Ubuntu Security Notice USN-3651-1
Posted May 21, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3651-1 - Ken Johnson and Jann Horn independently discovered that microprocessors utilizing speculative execution of a memory read may allow unauthorized memory reads via sidechannel attacks. An attacker in the guest could use this to expose sensitive guest information, including kernel memory. This update allows QEMU to expose new CPU features added by microcode updates to guests on amd64 and i386.

tags | advisory, kernel
systems | linux, ubuntu
advisories | CVE-2018-3639
MD5 | 37d74fc3cc5c45d86571a4d0fe217013
Teradek VidiU Pro 3.0.3 Server-Side Request Forgery
Posted May 21, 2018
Authored by LiquidWorm | Site zeroscience.mk

Teradek VidiU Pro version 3.0.3 suffers from a server-side request forgery vulnerability.

tags | exploit
MD5 | 488097c41ddd0c67e161fdff46ba8227
Debian Security Advisory 4204-1
Posted May 21, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4204-1 - This update fixes several vulnerabilities in imagemagick, a graphical software suite. Various memory handling problems or issues about incomplete input sanitizing would result in denial of service or memory disclosure.

tags | advisory, denial of service, vulnerability
systems | linux, debian
advisories | CVE-2017-10995, CVE-2017-11533, CVE-2017-11535, CVE-2017-11639, CVE-2017-13143, CVE-2017-17504, CVE-2017-17879, CVE-2018-5248
MD5 | b2041a18c86e6378b0dd734443fadc12
VMware Security Advisory 2018-0013
Posted May 21, 2018
Authored by VMware | Site vmware.com

VMware Security Advisory 2018-0013 - VMware Workstation and Fusion updates address signature bypass and multiple denial-of-service vulnerabilities.

tags | advisory, vulnerability
advisories | CVE-2018-6962, CVE-2018-6963
MD5 | bfc59fb9723754c60a0eebdd65270702
Debian Security Advisory 4205-1
Posted May 21, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4205-1 - This is an advance notice that regular security support for Debian GNU/Linux 8 (code name "jessie") will be terminated on the 17th of June.

tags | advisory
systems | linux, debian
MD5 | e19684a55bf0a2787106fc6f11027867
Merge PACS 7.0 Cross Site Request Forgery
Posted May 21, 2018
Authored by Safak Aslan

Merge PACS version 7.0 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 85f3fcbf660343101de26d499c7e4907
Oracle Cross Site Scripting
Posted May 21, 2018
Authored by Ismail Tasdelen

eventreg.oracle.com suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 1a3cc8c008bca4a51860ddf21b3ec91b
Model Agency Media House And Media Gallery 1.0 XSS / CSRF / SQL Injection
Posted May 21, 2018
Authored by Borna Nematzadeh

Model Agency Media House and Model Gallery version 1.0 suffers from cross site request forgery, remote SQL injection, and cross site scripting vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection, csrf
MD5 | 35bc5e526bc5047e68c12af85c567087
Auto Dealership And Vehicle Showroom WebSys 1.0 XSS / CSRF / SQL Injection
Posted May 21, 2018
Authored by Borna Nematzadeh

Auto Dealership and Vehicle Showroom WebSys version 1.0 suffers from cross site request forgery, remote SQL injection, and cross site scripting vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection, csrf
MD5 | dc32ea9b04f30a82d16c559c204735c5
Wchat PHP AJAX Chat Script 1.5 Cross Site Scripting
Posted May 21, 2018
Authored by Borna Nematzadeh

Wchat PHP AJAX Chat Script version 1.5 suffers from a persistent cross site scripting vulnerability.

tags | exploit, php, xss
MD5 | f581a1f41ea6f01cdb6ce90c2cc33f97
Schneider Electric PLCs Cross Site Request Forgery
Posted May 21, 2018
Authored by t4rkd3vilz

Schneider Electric PLCs suffer from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2013-0663
MD5 | 3b618bf669aab8cd255548f7a29f63a6
Page 1 of 1
Back1Next

Want To Donate?


Bitcoin: 18PFeCVLwpmaBuQqd5xAYZ8bZdvbyEWMmU

File Archive:

August 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    19 Files
  • 2
    Aug 2nd
    17 Files
  • 3
    Aug 3rd
    16 Files
  • 4
    Aug 4th
    1 Files
  • 5
    Aug 5th
    1 Files
  • 6
    Aug 6th
    19 Files
  • 7
    Aug 7th
    15 Files
  • 8
    Aug 8th
    9 Files
  • 9
    Aug 9th
    7 Files
  • 10
    Aug 10th
    10 Files
  • 11
    Aug 11th
    1 Files
  • 12
    Aug 12th
    0 Files
  • 13
    Aug 13th
    14 Files
  • 14
    Aug 14th
    18 Files
  • 15
    Aug 15th
    38 Files
  • 16
    Aug 16th
    0 Files
  • 17
    Aug 17th
    0 Files
  • 18
    Aug 18th
    0 Files
  • 19
    Aug 19th
    0 Files
  • 20
    Aug 20th
    0 Files
  • 21
    Aug 21st
    0 Files
  • 22
    Aug 22nd
    0 Files
  • 23
    Aug 23rd
    0 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close