Twenty Year Anniversary
Showing 1 - 16 of 16 RSS Feed

Files Date: 2018-10-12

D-Link DSL-2640T Cross Site Scripting
Posted Oct 12, 2018
Authored by Anas Falhi

D-Link DSL-2640T suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | ab8474f010ecad27ec56a4787f98cd86
NoMachine 5.3.26 Remote Code Execution
Posted Oct 12, 2018
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

NoMachine versions 5.3.26 and below suffer from a remote code execution vulnerability when opening a malicious .nxs file.

tags | exploit, remote, code execution
advisories | CVE-2018-17980
MD5 | 98f0f6fe4dc505a95f06d738805d3c7a
Ubuntu Security Notice USN-3791-1
Posted Oct 12, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3791-1 - It was discovered that git did not properly validate git submodule urls or paths. A remote attacker could possibly use this to craft a git repository that causes arbitrary code execution when recursive operations are used.

tags | advisory, remote, arbitrary, code execution
systems | linux, ubuntu
advisories | CVE-2018-17456
MD5 | 85767dae0ae80bb2ac7587482f498c03
SugarCRM 6.5.26 Cross Site Scripting
Posted Oct 12, 2018
Authored by Purplemet Security

SugarCRM version 6.5.26 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-17784
MD5 | b82076c84e312cbe1ebc4557763ad9cb
Teltonika RUT9XX Reflected Cross Site Scripting
Posted Oct 12, 2018
Authored by David Gnedt | Site sba-research.org

Teltonika RUT9XX routers with firmware before 00.05.01.1 are prone to cross site scripting vulnerabilities in hotspotlogin.cgi due to insufficient user input sanitization.

tags | exploit, cgi, vulnerability, xss
advisories | CVE-2018-17533
MD5 | ff8c8d3835518737f0d6871a0c139c16
HaPe PKH 1.1 Shell Upload
Posted Oct 12, 2018
Authored by Ihsan Sencan

HaPe PKH version 1.1 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | 62c933b97b6893257443812754c390f4
Teltonika RUT9XX Missing Access Control To UART Root Terminal
Posted Oct 12, 2018
Authored by David Gnedt | Site sba-research.org

Teltonika RUT9XX routers with firmware before 00.04.233 provide a root terminal on a serial interface without proper access control. This allows attackers with physical access to execute arbitrary commands with root privileges.

tags | exploit, arbitrary, root
advisories | CVE-2018-17534
MD5 | 86bab5d22be82eacf0714c8c19138b14
HaPe PKH 1.1 Cross Site Request Forgery
Posted Oct 12, 2018
Authored by Ihsan Sencan

HaPe PKH version 1.1 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 941b48bb34eb8d4b7ee110a37bffea54
Teltonika RUT9XX Unauthenticated OS Command Injection
Posted Oct 12, 2018
Authored by David Gnedt | Site sba-research.org

Teltonika RUT9XX routers with firmware before 00.04.233 are prone to multiple unauthenticated OS command injection vulnerabilities in autologin.cgi and hotspotlogin.cgi due to insufficient user input sanitization. This allows remote attackers to execute arbitrary commands with root privileges.

tags | exploit, remote, arbitrary, cgi, root, vulnerability
advisories | CVE-2018-17532
MD5 | 8a6dc3eb56196849d5108968e9b04d85
Phoenix Contact WebVisit 2985725 Authentication Bypass
Posted Oct 12, 2018
Authored by Deneut Tijl

Phoenix Contact WebVisit 2985725 suffers from an authentication bypass vulnerability.

tags | exploit, bypass
advisories | CVE-2016-8371, CVE-2016-8380
MD5 | 29ac1dc87682f94111e12fa3c111bf58
Cockpit CMS CSRF / XSS / Path Traversal
Posted Oct 12, 2018
Authored by Simon Uvarov

Cockpit CMS suffers from cross site request forgery, cross site scripting, and traversal vulnerabilities. Version 0.6.2 should address these issues.

tags | exploit, vulnerability, xss, file inclusion, csrf
advisories | CVE-2018-15538, CVE-2018-15539, CVE-2018-15540
MD5 | 7d2a860626777079a63681bdf22080cc
HaPe PKH 1.1 SQL Injection
Posted Oct 12, 2018
Authored by Ihsan Sencan

HaPe PKH version 1.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 7e34ff20cd2b83f132371d93dd842ce5
Wireshark Analyzer 2.6.4
Posted Oct 12, 2018
Authored by Gerald Combs | Site wireshark.org

Wireshark is a GTK+-based network protocol analyzer that lets you capture and interactively browse the contents of network frames. The goal of the project is to create a commercial-quality analyzer for Unix and Win32 and to give Wireshark features that are missing from closed-source sniffers.

Changes: Multiple crash vulnerabilities fixed. Various other updates.
tags | tool, sniffer, protocol
systems | windows, unix
advisories | CVE-2018-18225, CVE-2018-18226, CVE-2018-18227
MD5 | 8aa7b8c8ce0b6ce4256a081493819d6f
CAMALEON CMS 2.4 Cross Site Scripting
Posted Oct 12, 2018
Authored by Ismail Tasdelen

CAMALEON CMS version 2.4 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 2256a3e70ff20389c0c2c15bfdefc721
LUYA CMS 1.0.12 Cross Site Scripting
Posted Oct 12, 2018
Authored by Ismail Tasdelen

LUYA CMS version 1.0.12 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | e148edd591728b4ea0f6246c077f8c1f
Red Hat Security Advisory 2018-2916-01
Posted Oct 12, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-2916-01 - The SpamAssassin tool provides a way to reduce unsolicited commercial email from incoming email. Issues addressed include a denial of service vulnerability.

tags | advisory, denial of service
systems | linux, redhat
advisories | CVE-2017-15705, CVE-2018-11781
MD5 | d3a8242a565d737b6647653286419ead
Page 1 of 1
Back1Next

File Archive:

October 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    26 Files
  • 2
    Oct 2nd
    15 Files
  • 3
    Oct 3rd
    15 Files
  • 4
    Oct 4th
    15 Files
  • 5
    Oct 5th
    15 Files
  • 6
    Oct 6th
    2 Files
  • 7
    Oct 7th
    3 Files
  • 8
    Oct 8th
    23 Files
  • 9
    Oct 9th
    16 Files
  • 10
    Oct 10th
    15 Files
  • 11
    Oct 11th
    19 Files
  • 12
    Oct 12th
    16 Files
  • 13
    Oct 13th
    2 Files
  • 14
    Oct 14th
    2 Files
  • 15
    Oct 15th
    15 Files
  • 16
    Oct 16th
    20 Files
  • 17
    Oct 17th
    19 Files
  • 18
    Oct 18th
    21 Files
  • 19
    Oct 19th
    16 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close