exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 20 of 20 RSS Feed

Files Date: 2018-10-16

Microsoft Windows FSCTL_FIND_FILES_BY_SID Information Disclosure
Posted Oct 16, 2018
Authored by James Forshaw, Google Security Research

On Microsoft Windows, the FSCTL_FIND_FILES_BY_SID control code does not check for permissions to list a directory leading to disclosure of file names when a user is not granted FILE_LIST_DIRECTORY access.

tags | exploit
systems | windows
advisories | CVE-2018-8411
SHA-256 | be5f41f514a5827a0f821f666b99bf1814733a5f65b5368d166452c4a0dca392
Ubuntu Security Notice USN-3792-2
Posted Oct 16, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3792-2 - USN-3792-1 fixed a vulnerability in Net-SNMP. This update provides the corresponding update for Ubuntu 12.04 ESM. It was discovered that Net-SNMP incorrectly handled certain certain crafted packets. A remote attacker could possibly use this issue to cause Net-SNMP to crash, resulting in a denial of service. Various other issues were also addressed.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2018-18065
SHA-256 | be44d45d384dd945835966eb97cbc017459819b713ae4d51cbddbb443a0682a8
Red Hat Security Advisory 2018-2921-01
Posted Oct 16, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-2921-01 - Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages technologies. Issues addressed include a denial of service vulnerability.

tags | advisory, java, denial of service
systems | linux, redhat
advisories | CVE-2018-1336
SHA-256 | 7d96337c912bdd1ab3d51066d5aea36144133b51ed5a15a1ea54154a9b6584ca
GIU Gallery Image Upload 0.3.1 SQL Injection
Posted Oct 16, 2018
Authored by Ihsan Sencan

GIU Gallery Image Upload version 0.3.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | ad03a7e1c59075f477a7ea160ffad229f7b0f324efe2335d232e0fd61ce950b5
HighPortal 12.5 Cross Site Scripting
Posted Oct 16, 2018
Authored by Ali Abdollahi

HighPortal version 12.5 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-17964
SHA-256 | dc3438488946e0c9472997dfce4da1dfe5cae5b34fbf0e8e172de192753810ae
MV Video Sharing Software 1.2 SQL Injection
Posted Oct 16, 2018
Authored by Ihsan Sencan

MV Video Sharing Software version 1.2 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | bf109f99fed3e35c9a7364c59736525247321baa5838ad1f548c90a68f264220
Rukovoditel Project Management CRM 2.3 SQL Injection
Posted Oct 16, 2018
Authored by Ihsan Sencan

Rukovoditel Project Management CRM version 2.3 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | b595fd2f369ceab5d17f292cf77d4b68fa3c3044947c32a3f9a8db3b7585a36a
Vishesh Auto Index 3.1 SQL Injection
Posted Oct 16, 2018
Authored by Ihsan Sencan

Vishesh Auto Index version 3.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | dac146608e6ec0bdeb472a912c4503c1ba086de0f046a779211443a357e04da8
Kados R10 GreenBee SQL Injection
Posted Oct 16, 2018
Authored by Ihsan Sencan

Kados R10 GreenBee suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 7fb3985d828bb892c4c3a040dd5491240e92f22d54899b6d017c32720df41440
Navigate CMS 2.8.5 Arbitrary File Download
Posted Oct 16, 2018
Authored by Ihsan Sencan

Navigate CMS version 2.8.5 suffers from an arbitrary file download vulnerability.

tags | exploit, arbitrary, info disclosure
SHA-256 | d94c48701b35c9e133b1e87004ac915eac005fb1c835c9c3b5f97f1da42e3a43
HotelDruid 2.2.4 SQL Injection
Posted Oct 16, 2018
Authored by Ihsan Sencan

HotelDruid version 2.2.4 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 67c22127a13e5483bdf03253c3d68d88747421ff1474b8926a4b17ef0c721e03
KORA 2.7.0 SQL Injection
Posted Oct 16, 2018
Authored by Ihsan Sencan

KORA version 2.7.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 68d11ce4ad3635521fd4915adc28b1747966814769e335953fa938c1fa472077
Academic Timetable Final Build 7.0a / 7.0b Information Disclosure
Posted Oct 16, 2018
Authored by Ihsan Sencan

Academic Timetable Final Build versions 7.0a through 7.0b suffer from an information leakage vulnerability.

tags | exploit, info disclosure
SHA-256 | c1e1cfc2e93c87d5ba2e4f2461ef074e701570ff9623e54a4ffcf0bbe971681a
Digital Whisper Electronic Magazine #99
Posted Oct 16, 2018
Authored by cp77fk4r, digitalwhisper

Digital Whisper Electronic Magazine issue 99. Written in Hebrew.

tags | magazine
SHA-256 | 6b8d08bcfae25f3de3bb95f04e31f5ad8dc1e5da8cfda218a4fd5ff2cd2ac025
Red Hat Security Advisory 2018-2918-01
Posted Oct 16, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-2918-01 - The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats so that the code can be displayed or printed. Issues addressed include a bypass vulnerability.

tags | advisory, bypass
systems | linux, redhat
advisories | CVE-2018-10194, CVE-2018-15910, CVE-2018-16509, CVE-2018-16542
SHA-256 | 1365f857a8861ae654e77cc6eefab17b628f59e2c5ee0d9dae6960f0308f4405
Ubuntu Security Notice USN-3793-1
Posted Oct 16, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3793-1 - Multiple security issues were discovered in Thunderbird. If a user were tricked in to opening a specially crafted website in a browsing context, an attacker could potentially exploit these to cause a denial of service, or execute arbitrary code. It was discovered that if a user saved passwords before Thunderbird 58 and then later set a master password, an unencrypted copy of these passwords would still be accessible. A local user could exploit this to obtain sensitive information. Various other issues were also addressed.

tags | advisory, denial of service, arbitrary, local
systems | linux, ubuntu
advisories | CVE-2018-12376, CVE-2018-12378, CVE-2018-12383, CVE-2018-12385
SHA-256 | 02e62b2bffb86438849c76b75b7f7492d31b01439a58b29eb4c7e7f49d5ddbbc
Ubuntu Security Notice USN-3792-1
Posted Oct 16, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3792-1 - It was discovered that Net-SNMP incorrectly handled certain certain crafted packets. A remote attacker could possibly use this issue to cause Net-SNMP to crash, resulting in a denial of service.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2018-18065
SHA-256 | e3f5ab649c9e7f971bcf9045f65087717c8f42377af82be89306bbae6a985a72
WordPress Support Board 1.2.3 Cross Site Scripting
Posted Oct 16, 2018
Authored by Ismail Tasdelen

WordPress Support Board plugin version 1.2.3 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-18373
SHA-256 | 0355f54279601b62651bec189edae733105d73619df22b146e5bf3ab4c7ba055
Library CMS 2.1.1 Cross Site Scripting
Posted Oct 16, 2018
Authored by Ismail Tasdelen

Library CMS version 2.1.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-18372
SHA-256 | cf0dcc3a82dd155f565140d09b1aa184220c25854a672aeddf8695661be0a132
Digital Whisper Electronic Magazine #98
Posted Oct 16, 2018
Authored by cp77fk4r, digitalwhisper

Digital Whisper Electronic Magazine issue 98. Written in Hebrew.

tags | magazine
SHA-256 | e5c619408ee23114b0a23e1b5073a650c4c270997ef8a6e981a8314033390b4f
Page 1 of 1
Back1Next

File Archive:

March 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    16 Files
  • 2
    Mar 2nd
    0 Files
  • 3
    Mar 3rd
    0 Files
  • 4
    Mar 4th
    32 Files
  • 5
    Mar 5th
    28 Files
  • 6
    Mar 6th
    42 Files
  • 7
    Mar 7th
    17 Files
  • 8
    Mar 8th
    13 Files
  • 9
    Mar 9th
    0 Files
  • 10
    Mar 10th
    0 Files
  • 11
    Mar 11th
    15 Files
  • 12
    Mar 12th
    19 Files
  • 13
    Mar 13th
    21 Files
  • 14
    Mar 14th
    38 Files
  • 15
    Mar 15th
    15 Files
  • 16
    Mar 16th
    0 Files
  • 17
    Mar 17th
    0 Files
  • 18
    Mar 18th
    10 Files
  • 19
    Mar 19th
    0 Files
  • 20
    Mar 20th
    0 Files
  • 21
    Mar 21st
    0 Files
  • 22
    Mar 22nd
    0 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    0 Files
  • 26
    Mar 26th
    0 Files
  • 27
    Mar 27th
    0 Files
  • 28
    Mar 28th
    0 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close