what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 23 of 23 RSS Feed

Files Date: 2019-01-10

Scapy Packet Manipulation Tool 2.4.2
Posted Jan 10, 2019
Authored by Philippe Biondi | Site secdev.org

Scapy is a powerful interactive packet manipulation tool, packet generator, network scanner, network discovery tool, and packet sniffer. It provides classes to interactively create packets or sets of packets, manipulate them, send them over the wire, sniff other packets from the wire, match answers and replies, and more. Interaction is provided by the Python interpreter, so Python programming structures can be used (such as variables, loops, and functions). Report modules are possible and easy to make. It is intended to do the same things as ttlscan, nmap, hping, queso, p0f, xprobe, arping, arp-sk, arpspoof, firewalk, irpas, tethereal, tcpdump, etc.

Changes: Various updates.
tags | tool, scanner, python
systems | unix
SHA-256 | 54284baa8b2bf4047a08b330dc4dc38566396ac2106823be6c467cafb28e21b5
Capstone 4.0.1
Posted Jan 10, 2019
Authored by Nguyen Anh Quynh | Site capstone-engine.org

Capstone is a multi-architecture, multi-platform disassembly framework. It has a simple and lightweight architecture-neutral API, thread-safe by design, provides details on disassembled instruction, and more.

Changes: This release fixes some minor bugs of v4.0, as well as introduces some improvements for Python binding.
tags | tool
systems | unix
SHA-256 | 79bbea8dbe466bd7d051e037db5961fdb34f67c9fac5c3471dd105cfb1e05dc7
Adobe Coldfusion 11 CKEditor Arbitrary File Upload
Posted Jan 10, 2019
Authored by Vahagn Vardanian, Pete Freitag de Foundeo, Qazeer | Site metasploit.com

A file upload vulnerability exists in the CKEditor of Adobe ColdFusion 11 (Update 14 and earlier).

tags | exploit, file upload
advisories | CVE-2018-15961
SHA-256 | 0d365afb0d6b2a324a2e6192d6ce6443105fada13d13da91a9c3b3c7c50905bc
PEAR Archive_Tar PHP Object Injection
Posted Jan 10, 2019
Authored by farisv

PEAR Archive_Tar versions prior to 1.4.4 suffers from a php object injection vulnerability.

tags | exploit, php
advisories | CVE-2018-1000888
SHA-256 | cad5188ebafd78a5e0e10621a684eddce0406c02de57368d07686cc16c02a522
eBrigade ERP 4.5 Arbitrary File Download
Posted Jan 10, 2019
Authored by Ozkan Mustafa Akkus

eBrigade ERP version 4.5 suffers from an arbitrary file download vulnerability.

tags | exploit, arbitrary, info disclosure
SHA-256 | 117f9249bea7771a2cfcf9efcd9f0ce6b5c7d2729e36d747a9ede0dadbe6be0a
OpenSource ERP 6.3.1 SQL Injection
Posted Jan 10, 2019
Authored by Emre OVUNC

OpenSource ERP version 6.3.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2019-5893
SHA-256 | b2d7fa904d2dff2a593d21658127e40551bb4391f4a6506b3fc78b53b35c4b36
eBrigade ERP 4.5 SQL Injection
Posted Jan 10, 2019
Authored by Ihsan Sencan

eBrigade ERP version 4.5 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | cf9aedda2edaa02aaf53f3a035433749d6b7986728967e7bc1a6203cafaf8c5f
Event Locations 1.0.1 SQL Injection
Posted Jan 10, 2019
Authored by Ihsan Sencan

Event Locations version 1.0.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 88275942f5fb88f0e158e14cf95108c8fb6ce867163fafc1df26ac5d116a1fe1
Event Calendar 3.7.4 SQL Injection
Posted Jan 10, 2019
Authored by Ihsan Sencan

Event Calendar version 3.7.4 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 495fe888c07eb7013477dcfecaf314dd577057c69943e17d967e94902954d9dd
Matrix MLM Script 1.0 Information Disclosure
Posted Jan 10, 2019
Authored by Ihsan Sencan

Matrix MLM Script version 1.0 suffers from an information leakage vulnerability.

tags | exploit, info disclosure
SHA-256 | 576b3675b48f1a9b82018aaf2e57f8f3f5a811fdf6454bbc6a6a76fdb8f8e06c
doitX 1.0 SQL Injection
Posted Jan 10, 2019
Authored by Ihsan Sencan

doitX version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 8443606d97126b7d80e672f040622bc073a2f6888d3d70bbb58c7237b84d6ed4
Matrix MLM Script 1.0 SQL Injection
Posted Jan 10, 2019
Authored by Ihsan Sencan

Matrix MLM Script version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | ca575f2c95086f677fb1a21298a7bdf309998415691e9baefafeb33d6bcf06d7
Architectural CMS 1.0 SQL Injection
Posted Jan 10, 2019
Authored by Ihsan Sencan

Architectural CMS version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | b244b898b12e7d95194440448818e3ee95d3644810cb3f64d4f415553e247223
Shield CMS 2.2 Cross Site Request Forgery / SQL Injection
Posted Jan 10, 2019
Authored by Ihsan Sencan

Shield CMS version 2.2 suffers from cross site request forgery and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection, csrf
SHA-256 | 923d83c434210c09caff9748946a695969ae091f5fcb8459e584caa7673c5340
RGui 3.5.0 Buffer Overflow
Posted Jan 10, 2019
Authored by bzyo

RGui version 3.5.0 suffers from a buffer overflow vulnerability.

tags | exploit, overflow
SHA-256 | 9654ff71042f9f7a24f7fc12878c647f51c08d420753309de026862f8d79d38c
Ubuntu Security Notice USN-3854-1
Posted Jan 10, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3854-1 - A large number of security issues were discovered in the WebKitGTK+ Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.

tags | advisory, remote, web, denial of service, arbitrary, javascript, code execution, xss
systems | linux, ubuntu
advisories | CVE-2018-4437
SHA-256 | a70ebf43a8762742e0d072fed18c4f95e01e2e185d76cd0571555f4139dca015
Hodorsec Linux Binary Encryption Utility
Posted Jan 10, 2019
Authored by Hodorsec

This archive contains a Linux x86/x64 payload AES-128 CBC encrypter and payload decrypter/runner.

tags | tool, x86
systems | linux, unix
SHA-256 | 456de0042812f5a98189859583df3dd73d9d360ecc37ccc72ee879753d9ca583
Ubuntu Security Notice USN-3852-1
Posted Jan 10, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3852-1 - It was discovered that Exiv2 incorrectly handled certain files. An attacker could possibly use this issue to cause a denial of service. CVE-2017-9239 only affected Ubuntu 14.04 LTS and Ubuntu 16.04 LTS.

tags | advisory, denial of service
systems | linux, ubuntu
advisories | CVE-2017-11591, CVE-2017-14864, CVE-2017-17669, CVE-2017-9239, CVE-2018-1758, CVE-2018-17581
SHA-256 | 8da66fb4f94a61269f5664bdf5f33f68bb252cc208c175d1b15c6f4930d78b35
Ubuntu Security Notice USN-3853-1
Posted Jan 10, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3853-1 - Ben Fuhrmannek discovered that GnuPG incorrectly handled Web Key Directory lookups. A remote attacker could possibly use this issue to cause a denial of service, or perform Cross-Site Request Forgery attacks.

tags | advisory, remote, web, denial of service, csrf
systems | linux, ubuntu
advisories | CVE-2018-1000858
SHA-256 | a28896c2688cd2b95c1d5b7d63cd536108b1fcfb550beba345b95b04123e9aab
Google Chrome V8 JavaScript Engine 71.0.3578.98 Memory Exhaustion
Posted Jan 10, 2019
Authored by Bogdan Kurinnoy

Google Chrome V8 JavaScript Engine version 71.0.3578.98 has an out-of-memory in invalid array length denial of service vulnerability.

tags | exploit, denial of service, javascript
SHA-256 | 28a5ea3aa941930a5ed78e4e986a702af4b16545c6878ade22938a437c1c54d6
Packet Fence 8.3.0
Posted Jan 10, 2019
Site packetfence.org

PacketFence is a network access control (NAC) system. It is actively maintained and has been deployed in numerous large-scale institutions. It can be used to effectively secure networks, from small to very large heterogeneous networks. PacketFence provides NAC-oriented features such as registration of new network devices, detection of abnormal network activities including from remote snort sensors, isolation of problematic devices, remediation through a captive portal, and registration-based and scheduled vulnerability scans.

Changes: Added support for Juniper EX2300 (JUNOS 18.2) switches. Added a random algorithm for VLAN pooling. Added the ability to reserve IP addresses in pfdhcp. Added a way to trigger a violation when device profiling detects a change in the device class. Various other additions.
tags | tool, remote
systems | unix
SHA-256 | 91699fd190021fe97d2763a34db487835e9be82fbd7d493e9d4912061c7e54c6
Ubuntu Security Notice USN-3851-1
Posted Jan 10, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3851-1 - It was discovered that Django incorrectly handled the default 404 page. A remote attacker could use this issue to spoof content using a malicious URL.

tags | advisory, remote, spoof
systems | linux, ubuntu
advisories | CVE-2019-3498
SHA-256 | 7d26357a26663c35c973f1cc5deb7475fff62678c8eed33a23ec4b6572348cd2
Cisco VoIP Script Insertion / Weak Passwords / Undocumented Functionality
Posted Jan 10, 2019
Authored by W. Schober | Site sec-consult.com

Cisco VoIP phone such as models 88XX suffer from script insertion, weak and hard-coded passwords, undocumented debug functionality, and various outdated components with known vulnerabilities.

tags | exploit, vulnerability
systems | cisco
advisories | CVE-2018-0461
SHA-256 | 41a1b9784b878fa08044f5ed9bf633aed22e9a1c597ac51d8518b8c652c3cb84
Page 1 of 1
Back1Next

File Archive:

June 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jun 1st
    19 Files
  • 2
    Jun 2nd
    16 Files
  • 3
    Jun 3rd
    28 Files
  • 4
    Jun 4th
    0 Files
  • 5
    Jun 5th
    0 Files
  • 6
    Jun 6th
    19 Files
  • 7
    Jun 7th
    23 Files
  • 8
    Jun 8th
    11 Files
  • 9
    Jun 9th
    10 Files
  • 10
    Jun 10th
    4 Files
  • 11
    Jun 11th
    0 Files
  • 12
    Jun 12th
    0 Files
  • 13
    Jun 13th
    0 Files
  • 14
    Jun 14th
    0 Files
  • 15
    Jun 15th
    0 Files
  • 16
    Jun 16th
    0 Files
  • 17
    Jun 17th
    0 Files
  • 18
    Jun 18th
    0 Files
  • 19
    Jun 19th
    27 Files
  • 20
    Jun 20th
    65 Files
  • 21
    Jun 21st
    10 Files
  • 22
    Jun 22nd
    8 Files
  • 23
    Jun 23rd
    6 Files
  • 24
    Jun 24th
    6 Files
  • 25
    Jun 25th
    0 Files
  • 26
    Jun 26th
    0 Files
  • 27
    Jun 27th
    15 Files
  • 28
    Jun 28th
    14 Files
  • 29
    Jun 29th
    11 Files
  • 30
    Jun 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close