what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 16 of 16 RSS Feed

Files Date: 2018-12-05

Slackware Security Advisory - mozilla-nss Updates
Posted Dec 5, 2018
Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New mozilla-nss packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix a security issue.

tags | advisory
systems | linux, slackware
advisories | CVE-2018-12404
SHA-256 | 8f68939f6ea6bc41b5d88e5c6f9512f0b524cfbf8bf623647dc7314c29fac479
Typesetter 5.1 Cross Site Scripting
Posted Dec 5, 2018
Authored by Mithat Gogebakan | Site netsparker.com

Typesetter version 5.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 28278b39532299c48ed1dba24aea5fd1630a62e4e9fc86a6e90f7266db4be524
Chrome V8 Math.expm1 Incorrect Type Information
Posted Dec 5, 2018
Authored by Google Security Research, sroett

Chrome V8 sets incorrect type information on Math.expm1.

tags | advisory
SHA-256 | b5051eaa807edf87306ff4070c05b871431b0ebddc1af133eba30594e5419590
Wireshark find_signature Heap Out-Of-Bounds Read
Posted Dec 5, 2018
Authored by Google Security Research, mjurczyk

Wireshark suffers from a heap out-of-bounds read in find_signature.

tags | exploit
advisories | CVE-2018-19627
SHA-256 | 41bc98d3cbc6e5394de02b36384419b632fa175b3e95c6ff855f2a6e83b86a5c
NUUO NVRMini2 3.9.1 Command Injection
Posted Dec 5, 2018
Authored by Artem Metla

NUUO NVRMini2 version 3.9.1 suffers from an authenticated command injection vulnerability.

tags | exploit
advisories | CVE-2018-15716
SHA-256 | 0a8f59d008e5177252566cbb4b4fa52dce1b3abdc7f39ddee6cbbfc1175b0861
Dolibarr ERP / CRM 8.0.3 Cross Site Scripting
Posted Dec 5, 2018
Authored by Ozkan Mustafa Akkus

Dolibarr ERP / CRM version 8.0.3 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-19799
SHA-256 | 93a597392584cf3b5e1ab2271d1890060f352e5b06b9fab46d705c70d7f46e0d
DomainMOD 4.11.01 Cross Site Scripting
Posted Dec 5, 2018
Authored by Mohammed Abdul Raheem

DomainMOD version 4.11.01 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2018-19749, CVE-2018-19750, CVE-2018-19751, CVE-2018-19752
SHA-256 | 57e88a02202c06f15254438a490e8cf8d4636e6dd56ef3c4e5ee97a73a46f6f5
OpenSSH User Enumeration
Posted Dec 5, 2018
Authored by Matthew Daley, Justin Gardner, Lee David Painter

OpenSSH versions prior to 7.7 suffer from a user enumeration vulnerability.

tags | exploit
advisories | CVE-2018-15473
SHA-256 | 4859577142cc1049d3959af66839a236a04781ada4ed91ed9ebe565b43f98029
SolarWinds SFTP Insecure Password Storage / XXE Injection
Posted Dec 5, 2018
Authored by ajcraggs

In SolarWinds SFTP/SCP Server through 2018-09-10, the configuration file is world readable and writable, and stores user passwords in an insecure manner, allowing an attacker to determine passwords for potentially privileged accounts. This also grants the attacker an ability to backdoor the server. SolarWinds SFTP/SCP server through 2018-09-10 is vulnerable to XXE via a world readable and writable configuration file that allows an attacker to exfiltrate data. These vulnerabilities affect versions prior to November 2018 release.

tags | advisory, vulnerability
advisories | CVE-2018-16791, CVE-2018-16792
SHA-256 | 7df4b2e0ea39929c4fb143059747f1dc9dfd9fc95b1686beaa11991e57523e2b
Xorg X11 Server (AIX) Local Privilege Escalation
Posted Dec 5, 2018
Authored by 0xdono

Xorg X11 server on AIX local privilege escalation exploit.

tags | exploit, local
systems | aix
advisories | CVE-2018-14665
SHA-256 | fdeb1b36f96691504fb5e84f75c6cdb5cd0544822f4eee060f585ebb37ee6e2d
Seopanel 3.13.0 Cross Site Scripting
Posted Dec 5, 2018
Authored by Zekvan Arslan | Site netsparker.com

Seopanel version 3.13.0 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | b03935fa62fe7d64672a36bbe4a1643a799fc8f3bbd3bbe83eb9a94e6c3bc726
Rockwell Automation Allen-Bradley PowerMonitor 1000 Authentication Bypass
Posted Dec 5, 2018
Authored by Luca.Chiou

Rockwell Automation Allen-Bradley PowerMonitor 1000 suffers from an incorrect access control that can allow for authentication bypass.

tags | exploit, bypass
advisories | CVE-2018-19616
SHA-256 | 2e61ab14354c28992b4d911cdcf2e650d1988c2982dc51fc9f3976099bb6c776
Google Allo Denial Of Service
Posted Dec 5, 2018
Authored by KnocKout

Google Allo suffers from a denial of service vulnerability.

tags | exploit, denial of service
SHA-256 | 3a200cdec9078f15d49a2370f6fdbfe05a30a0b2ea3438a29940983025506470
Microsoft Lync For Mac 2011 Injection
Posted Dec 5, 2018
Authored by nyxgeek

Microsoft Lync for Mac 2011 suffers from a forced browsing / download injection vulnerability.

tags | exploit
advisories | CVE-2018-8474
SHA-256 | c1748eb14db54b7cb8de1f8cb17cbde9c33ef7291eedf99646039fa3fee586b8
Linux/x64 Reverse (0.0.0.0:1907/TCP) Shell Shellcode
Posted Dec 5, 2018
Authored by Kagan Capar

119 bytes small Linux/x64 reverse (0.0.0.0:1907/TCP) shell shellcode.

tags | shell, tcp, shellcode
systems | linux
SHA-256 | e0e74d40c3e636f312b82579e463a18531fc4a43f62d0f957640bba6a354a1eb
Linux/x86 /usr/bin/head -n99 cat etc/passwd Shellcode
Posted Dec 5, 2018
Authored by Nelis

61 bytes small Linux/x86 /usr/bin/head -n99 cat etc/passwd shellcode.

tags | x86, shellcode
systems | linux
SHA-256 | d599a6170b8fc6c0a18d02af4dd4a98f98fcaf1d305382d56cba5cd145a3adb3
Page 1 of 1
Back1Next

File Archive:

March 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    16 Files
  • 2
    Mar 2nd
    0 Files
  • 3
    Mar 3rd
    0 Files
  • 4
    Mar 4th
    32 Files
  • 5
    Mar 5th
    28 Files
  • 6
    Mar 6th
    42 Files
  • 7
    Mar 7th
    17 Files
  • 8
    Mar 8th
    13 Files
  • 9
    Mar 9th
    0 Files
  • 10
    Mar 10th
    0 Files
  • 11
    Mar 11th
    15 Files
  • 12
    Mar 12th
    19 Files
  • 13
    Mar 13th
    21 Files
  • 14
    Mar 14th
    38 Files
  • 15
    Mar 15th
    15 Files
  • 16
    Mar 16th
    0 Files
  • 17
    Mar 17th
    0 Files
  • 18
    Mar 18th
    10 Files
  • 19
    Mar 19th
    0 Files
  • 20
    Mar 20th
    0 Files
  • 21
    Mar 21st
    0 Files
  • 22
    Mar 22nd
    0 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    0 Files
  • 26
    Mar 26th
    0 Files
  • 27
    Mar 27th
    0 Files
  • 28
    Mar 28th
    0 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close