Twenty Year Anniversary
Showing 1 - 15 of 15 RSS Feed

Files Date: 2018-09-27

AppArmor Filesystem Blacklisting Bypass
Posted Sep 27, 2018
Authored by Jann Horn, Google Security Research

AppArmor has an issue where filesystem blacklisting can be bypassed by moving parents.

tags | exploit
MD5 | 639fa99eb3859f6045557741289c460b
PCProtect 4 8.35 Privilege Escalation
Posted Sep 27, 2018
Authored by Hashim Jawad

PCProtect 4 version 8.35 suffers from a weak file permission privilege escalation vulnerability.

tags | exploit
MD5 | f01e6efef117c274cd2af28a68f535ec
Rausoft ID.prove 2.95 SQL Injection
Posted Sep 27, 2018
Authored by Ilya Timchenko

Rausoft ID.prove version 2.95 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 8620e03766a504cc03be6e2f4dcead25
ManageEngine Desktop Central 10.0.271 Cross Site Scripting
Posted Sep 27, 2018
Authored by Ismail Tasdelen

ManageEngine Desktop Central version 10.0.271 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | e76e3a52832dfa703a96d54c2c8a150a
iWay Data Quality Suite Web Console 10.6.1.ga XML Injection
Posted Sep 27, 2018
Authored by Sureshbabu Narvaneni

iWay Data Quality Suite Web Console version 10.6.1.ga suffers from an XML external entity injection vulnerability.

tags | exploit, web
MD5 | 600d4e1ad23f8f4d97e239fea2520065
Microsoft Edge Sandbox Escape
Posted Sep 27, 2018
Authored by Google Security Research, lokihardt

Microsoft Edge suffers from a sandbox escape vulnerability.

tags | exploit
advisories | CVE-2018-8463, CVE-2018-8468, CVE-2018-8469
MD5 | 69c1c3d9c1a1bb35469e2efa12885373
Red Hat Security Advisory 2018-2826-01
Posted Sep 27, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-2826-01 - Mod_perl incorporates a Perl interpreter into the Apache web server, such that the Apache HTTP server can directly execute Perl code. Issues addressed include a code execution vulnerability.

tags | advisory, web, perl, code execution
systems | linux, redhat
advisories | CVE-2011-2767
MD5 | 68d78740d4e091cea9d2b974a51f106c
Red Hat Security Advisory 2018-2825-01
Posted Sep 27, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-2825-01 - Mod_perl incorporates a Perl interpreter into the Apache web server, such that the Apache HTTP server can directly execute Perl code. Issues addressed include a code execution vulnerability.

tags | advisory, web, perl, code execution
systems | linux, redhat
advisories | CVE-2011-2767
MD5 | 7cd8146c3ec61901eb3a054b2a7a3399
WordPress WebARX Website Firewall 4.9.8 XSS / Bypass
Posted Sep 27, 2018
Authored by ed0x21son

WordPress WebARX Website Firewall plugin version 4.9.8 suffers from bypass and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 93f3340e129e42fa3f325953a6ff8e08
WordPress Breadcrumb NavXT 6.1.0 Username Disclosure
Posted Sep 27, 2018
Authored by Janek Vind aka waraxe | Site waraxe.us

WordPress Breadcrumb NavXT plugin version 6.1.0 suffers from a username disclosure vulnerability.

tags | exploit
MD5 | 173afd20c324d341cdad331c3b81d260
gVisor Pagetables Reuse
Posted Sep 27, 2018
Authored by Jann Horn, Google Security Research

gVisor reuses pagetables across levels without paging-structure invalidation.

tags | exploit
MD5 | b9810ec486fb711402c3a34a26e05900
CMS ISWEB 3.5.3 SQL Injection
Posted Sep 27, 2018
Authored by Thiago Sena, Rafael Fontes Souza

CMS ISWEB version 3.5.3 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2018-14956
MD5 | 618e9d9b72daf87629b0bac6ba634ad8
Citrix StorageZones Controller Improper Access Restrictions / Traversal
Posted Sep 27, 2018
Authored by Wolfgang Ettlinger | Site sec-consult.com

Citrix StorageZones Controller versions prior to 5.4.2 suffer from padding oracle, improper access restriction, and path traversal vulnerabilities.

tags | exploit, vulnerability
advisories | CVE-2018-16968, CVE-2018-16969
MD5 | 25f551df2535dadd811ace404a1ecd28
Progress Kendo UI Editor 2018.1.221 Cross Site Scripting
Posted Sep 27, 2018
Authored by M. Tomaselli | Site sec-consult.com

Progress Kendo UI Editor version 2018.1.221 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-14037
MD5 | f16666a4692bf0ff8098f64ac330736e
WordPress WP Insert 2.4.2 Arbitrary File Upload
Posted Sep 27, 2018
Authored by Mostafa Gharzi

WordPress WP Insert plugin versions 2.4.2 and below suffer from a remote file upload vulnerability.

tags | exploit, remote, file upload
MD5 | eb35a6a7e6e061b0d06e449c248396ab
Page 1 of 1
Back1Next

File Archive:

October 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    26 Files
  • 2
    Oct 2nd
    15 Files
  • 3
    Oct 3rd
    15 Files
  • 4
    Oct 4th
    15 Files
  • 5
    Oct 5th
    15 Files
  • 6
    Oct 6th
    2 Files
  • 7
    Oct 7th
    3 Files
  • 8
    Oct 8th
    23 Files
  • 9
    Oct 9th
    16 Files
  • 10
    Oct 10th
    15 Files
  • 11
    Oct 11th
    19 Files
  • 12
    Oct 12th
    16 Files
  • 13
    Oct 13th
    2 Files
  • 14
    Oct 14th
    2 Files
  • 15
    Oct 15th
    15 Files
  • 16
    Oct 16th
    20 Files
  • 17
    Oct 17th
    19 Files
  • 18
    Oct 18th
    21 Files
  • 19
    Oct 19th
    16 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close