what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 15 of 15 RSS Feed

Files Date: 2018-09-27

AppArmor Filesystem Blacklisting Bypass
Posted Sep 27, 2018
Authored by Jann Horn, Google Security Research

AppArmor has an issue where filesystem blacklisting can be bypassed by moving parents.

tags | exploit
SHA-256 | b2024aa06da618d87af0a264562f40bcd8ebfa1535eb007f2251a6df21367000
PCProtect 4 8.35 Privilege Escalation
Posted Sep 27, 2018
Authored by Hashim Jawad

PCProtect 4 version 8.35 suffers from a weak file permission privilege escalation vulnerability.

tags | exploit
SHA-256 | 1a3f9f98779877970807ab97138ae5d81df5de87bf4360b2b951f311a288ac81
Rausoft ID.prove 2.95 SQL Injection
Posted Sep 27, 2018
Authored by Ilya Timchenko

Rausoft ID.prove version 2.95 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | e2528102866a52d493d80ef903b6833bfc2afec275eb5ddc60bc42bc4450abf4
ManageEngine Desktop Central 10.0.271 Cross Site Scripting
Posted Sep 27, 2018
Authored by Ismail Tasdelen

ManageEngine Desktop Central version 10.0.271 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | b98475c7c1086afe41c236113ea38e1a2b485100d865ef19d96b91e77c7aeec3
iWay Data Quality Suite Web Console 10.6.1.ga XML Injection
Posted Sep 27, 2018
Authored by Sureshbabu Narvaneni

iWay Data Quality Suite Web Console version 10.6.1.ga suffers from an XML external entity injection vulnerability.

tags | exploit, web
SHA-256 | cd2ba04d9848a473c28202f68204338199eb8e5285f94b0ea6d14d308671ad8b
Microsoft Edge Sandbox Escape
Posted Sep 27, 2018
Authored by Google Security Research, lokihardt

Microsoft Edge suffers from a sandbox escape vulnerability.

tags | exploit
advisories | CVE-2018-8463, CVE-2018-8468, CVE-2018-8469
SHA-256 | 53dae687e4a4409c81987ce450a88ac52d2a2a51eac4971e2a0712be2ba423d2
Red Hat Security Advisory 2018-2826-01
Posted Sep 27, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-2826-01 - Mod_perl incorporates a Perl interpreter into the Apache web server, such that the Apache HTTP server can directly execute Perl code. Issues addressed include a code execution vulnerability.

tags | advisory, web, perl, code execution
systems | linux, redhat
advisories | CVE-2011-2767
SHA-256 | ac9aa4c6261769c2d22dbde4257dfbf26f2c23a34a9237188e0837eec6dda572
Red Hat Security Advisory 2018-2825-01
Posted Sep 27, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-2825-01 - Mod_perl incorporates a Perl interpreter into the Apache web server, such that the Apache HTTP server can directly execute Perl code. Issues addressed include a code execution vulnerability.

tags | advisory, web, perl, code execution
systems | linux, redhat
advisories | CVE-2011-2767
SHA-256 | a11d5e847d6c1ff56b2c9c8a869908db8232a62f8df3b151cc7da252ed065f2a
WordPress WebARX Website Firewall 4.9.8 XSS / Bypass
Posted Sep 27, 2018
Authored by ed0x21son

WordPress WebARX Website Firewall plugin version 4.9.8 suffers from bypass and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 032d4a54514c2a1ec76ac9061e0c5fa5965ebbe2cb481a055156866bc0a19f07
WordPress Breadcrumb NavXT 6.1.0 Username Disclosure
Posted Sep 27, 2018
Authored by Janek Vind aka waraxe | Site waraxe.us

WordPress Breadcrumb NavXT plugin version 6.1.0 suffers from a username disclosure vulnerability.

tags | exploit
SHA-256 | a7d331bc7a3c3c5f71c497eb152d46ea8fb5956444bfa1d2462d1d680b57b936
gVisor Pagetables Reuse
Posted Sep 27, 2018
Authored by Jann Horn, Google Security Research

gVisor reuses pagetables across levels without paging-structure invalidation.

tags | exploit
SHA-256 | 193fccefc5c977b91f16570534ba06f19e07ed6de291fdd9b2d2eeba79b56a70
CMS ISWEB 3.5.3 SQL Injection
Posted Sep 27, 2018
Authored by Thiago Sena, Rafael Fontes Souza

CMS ISWEB version 3.5.3 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2018-14956
SHA-256 | 2909ddd6bab3f45cee745aae9cdef49e2d801722783ac5bb7a6a1cdd2055a743
Citrix StorageZones Controller Improper Access Restrictions / Traversal
Posted Sep 27, 2018
Authored by Wolfgang Ettlinger | Site sec-consult.com

Citrix StorageZones Controller versions prior to 5.4.2 suffer from padding oracle, improper access restriction, and path traversal vulnerabilities.

tags | exploit, vulnerability
advisories | CVE-2018-16968, CVE-2018-16969
SHA-256 | ae39dfe4bfaaa26cd2361836889bfa69e570b2f0a6679a9b71736478c8294df6
Progress Kendo UI Editor 2018.1.221 Cross Site Scripting
Posted Sep 27, 2018
Authored by M. Tomaselli | Site sec-consult.com

Progress Kendo UI Editor version 2018.1.221 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-14037
SHA-256 | 635dd00f814500a20fbba041a4fa05e33c59282c7a7c1cf98dcbb1c9b0c6e85a
WordPress WP Insert 2.4.2 Arbitrary File Upload
Posted Sep 27, 2018
Authored by Mostafa Gharzi

WordPress WP Insert plugin versions 2.4.2 and below suffer from a remote file upload vulnerability.

tags | exploit, remote, file upload
SHA-256 | f14b654cbda91bb779faa992b5b3d046f5e22527ea9d6ba3195379ea30041d9a
Page 1 of 1
Back1Next

File Archive:

December 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    2 Files
  • 2
    Dec 2nd
    12 Files
  • 3
    Dec 3rd
    0 Files
  • 4
    Dec 4th
    0 Files
  • 5
    Dec 5th
    14 Files
  • 6
    Dec 6th
    18 Files
  • 7
    Dec 7th
    0 Files
  • 8
    Dec 8th
    0 Files
  • 9
    Dec 9th
    0 Files
  • 10
    Dec 10th
    0 Files
  • 11
    Dec 11th
    0 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close