Twenty Year Anniversary
Showing 1 - 25 of 33 RSS Feed

Files Date: 2018-11-12

TufinOS 2.1.7 Build 1193 XML Injection
Posted Nov 12, 2018
Authored by Konstantinos Alexiou

TufinOS version 2.1.7 build 1193 suffers from an XML external entity injection vulnerability.

tags | exploit
MD5 | ccd2c04ce995ab3a02c0fb45eeb538aa
The Don 1.0.1 SQL Injection
Posted Nov 12, 2018
Authored by Ihsan Sencan

The Don version 1.0.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | a6151d20387a2fb7f431a9064d670d29
Mongoose Web Server 6.9 Denial Of Service
Posted Nov 12, 2018
Authored by Ihsan Sencan

Mongoose Web Server version 6.9 suffers from a denial of service vulnerability.

tags | exploit, web, denial of service
MD5 | 0bfc59fbbe8fc8dce5ff5ee4bf59679b
Nominas 0.27 SQL Injection
Posted Nov 12, 2018
Authored by Ihsan Sencan

Nominas version 0.27 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 035d880db5eccd94dd115104f910b017
ServerZilla 1.0 SQL Injection
Posted Nov 12, 2018
Authored by Ihsan Sencan

ServerZilla version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 7b2b67def4a643fdfd3f2c493c0fa519
GPS Tracking System 2.12 SQL Injection
Posted Nov 12, 2018
Authored by Ihsan Sencan

GPS Tracking System version 2.12 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | b3d47b43dcee7925d466c114f0441523
Easyndexer 1.0 Cross Site Request Forgery
Posted Nov 12, 2018
Authored by Ihsan Sencan

Easyndexer version 1.0 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 5cddd718e27c0e3419a973f5446a7e5d
Facturation System 1.0 SQL Injection
Posted Nov 12, 2018
Authored by Ihsan Sencan

Facturation System version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | cc739da9b1dce4e69acec65524f7f8ed
Paroiciel 11.20 SQL Injection
Posted Nov 12, 2018
Authored by Ihsan Sencan

Paroiciel version 11.20 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 2cef56992e3bde78149d1a2a712ab38b
Data Center Audit 2.6.2 SQL Injection
Posted Nov 12, 2018
Authored by Ihsan Sencan

Data Center Audit version 2.6.2 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 50743004a9d872e2e1324206cc8fb52a
RSA BSAFE Micro Edition Suite Key Management Error
Posted Nov 12, 2018
Site emc.com

RSA BSAFE Micro Edition Suite contains a fix for a key management error that could potentially be exploited by malicious users to compromise the affected system. RSA BSAFE Micro Edition Suite versions prior to 4.0.11 (in 4.0.x series) and RSA BSAFE Micro Edition Suite versions prior to 4.1.6.2 (in 4.1.x series) are affected.

tags | advisory
advisories | CVE-2018-15769
MD5 | 026b101ee9c8be4aea5befac0e580621
WordPress PeepSo 1.11.2 Cross Site Scripting
Posted Nov 12, 2018
Authored by Socket_0x03

WordPress PeepSo plugin version 1.11.2 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 0d2abe1f8360ec073ae662fa0f60ddd8
WordPress PeepSo 1.11.2 SQL Injection
Posted Nov 12, 2018
Authored by Socket_0x03

WordPress PeepSo plugin version 1.11.2 suffers from a remote time-based SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | f7801a9f20acb28193e406e3e8127b11
WordPress WP User Manager 2.0.8 SQL Injection
Posted Nov 12, 2018
Authored by Socket_0x03

WordPress WP User Manager plugin version 2.0.8 suffers from a remote time-based SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | b23aa52bd9caaf0ef1b7daec59bcbab1
Dell EMC RecoverPoint Information Disclosure / Resource Consumption
Posted Nov 12, 2018
Authored by Paul Taylor | Site emc.com

Dell EMC RecoverPoint versions prior to 5.1.2.1 and RecoverPoint for VMs versions prior to 5.2.0.2 contain an information disclosure vulnerability. A malicious boxmgmt user may potentially be able to determine the existence of any system file via Boxmgmt CLI. Dell EMC RecoverPoint versions prior to 5.1.2.1 and RecoverPoint for VMs versions prior to 5.2.0.2 contain an uncontrolled resource consumption vulnerability. A malicious boxmgmt user may potentially be able to consume large amount of CPU bandwidth to make the system slow or to determine the existence of any system file via Boxmgmt CLI.

tags | advisory, info disclosure
advisories | CVE-2018-15771, CVE-2018-15772
MD5 | c22adbdd431026937dde62858e1d4472
Vignette Content Management 6 Security Bypass
Posted Nov 12, 2018
Authored by Rafael Pedrero

Vignette Content Management version 6 suffers from a security bypass vulnerability.

tags | exploit, bypass
advisories | CVE-2018-18941
MD5 | 134f2f8a3d512fe1b1e828f5bdf8ebdf
Netscape Enterprise 3.63 Cross Site Scripting
Posted Nov 12, 2018
Authored by Rafael Pedrero

Netscape Enterprise 3.63 suffers from a cross site scripting vulnerability in the default SnoopServlet servlet.

tags | exploit, xss
advisories | CVE-2018-18940
MD5 | 0c6b97708954b5902901fac4c063a6c2
Advanced Comment System 1.0 SQL Injection
Posted Nov 12, 2018
Authored by Rafael Pedrero

Advanced Comment System version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2018-18619
MD5 | 2e410b3407ce4a5c6db3c52fa0679770
Ubuntu Security Notice USN-3815-2
Posted Nov 12, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3815-2 - USN-3815-1 fixed a vulnerability in gettext. This update provides the corresponding update for Ubuntu 12.04 ESM. It was discovered that gettext incorrectly handled certain messages. An attacker could possibly use this issue to execute arbitrary code.

tags | advisory, arbitrary
systems | linux, ubuntu
advisories | CVE-2018-18751
MD5 | 51e487332db90c74eb92afb810976bca
Ubuntu Security Notice USN-3815-1
Posted Nov 12, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3815-1 - It was discovered that gettext incorrectly handled certain messages. An attacker could possibly use this issue to execute arbitrary code.

tags | advisory, arbitrary
systems | linux, ubuntu
advisories | CVE-2018-18751
MD5 | 55c08c31b7c8375fb97d655a18afabb1
Ubuntu Security Notice USN-3814-1
Posted Nov 12, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3814-1 - It was discovered libmspack incorrectly handled certain malformed CAB files. A remote attacker could use this issue to cause libmspack to crash, resulting in a denial of service.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2018-18584
MD5 | 08291f8fba97ca0ed220da4aeaf4801e
Red Hat Security Advisory 2018-3541-01
Posted Nov 12, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-3541-01 - Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection. Issues addressed include a code execution vulnerability.

tags | advisory, code execution
systems | linux, redhat
advisories | CVE-2018-17456
MD5 | 02056a6b619ec2a8fa0aa05d6ea83471
Debian Security Advisory 4338-1
Posted Nov 12, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4338-1 - Integer overflows in the processing of packets in network cards emulated by QEMU, a fast processor emulator, could result in denial of service.

tags | advisory, denial of service, overflow
systems | linux, debian
advisories | CVE-2018-10839, CVE-2018-17962, CVE-2018-17963
MD5 | 15d509051fcf2fb66ea41acb025d14f0
Debian Security Advisory 4337-1
Posted Nov 12, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4337-1 - safety errors may lead to the execution of arbitrary code or denial of service.

tags | advisory, denial of service, arbitrary
systems | linux, debian
advisories | CVE-2018-12389, CVE-2018-12390, CVE-2018-12392, CVE-2018-12393
MD5 | 84df8a853d0cd691f2c1c1877e3e51a8
Debian Security Advisory 4336-1
Posted Nov 12, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4336-1 - Several vulnerabilities were discovered in Ghostscript, the GPL PostScript/PDF interpreter, which may result in denial of service, disclosure of existence and size of arbitrary files, or the execution of arbitrary code if a malformed Postscript file is processed (despite the dSAFER sandbox being enabled).

tags | advisory, denial of service, arbitrary, vulnerability
systems | linux, debian
advisories | CVE-2018-11645, CVE-2018-17961, CVE-2018-18073, CVE-2018-18284
MD5 | 5272b35e98151ec03cae17c1cae7ca73
Page 1 of 2
Back12Next

File Archive:

December 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    11 Files
  • 2
    Dec 2nd
    1 Files
  • 3
    Dec 3rd
    18 Files
  • 4
    Dec 4th
    40 Files
  • 5
    Dec 5th
    16 Files
  • 6
    Dec 6th
    50 Files
  • 7
    Dec 7th
    12 Files
  • 8
    Dec 8th
    1 Files
  • 9
    Dec 9th
    1 Files
  • 10
    Dec 10th
    15 Files
  • 11
    Dec 11th
    30 Files
  • 12
    Dec 12th
    25 Files
  • 13
    Dec 13th
    7 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close