what you don't know can hurt you
Showing 1 - 17 of 17 RSS Feed

Files Date: 2019-01-21

NUUO CMS Session Tokens / Traversal / SQL Injection
Posted Jan 21, 2019
Authored by Pedro Ribeiro

NUUO CMS suffers from directory traversal, predictable session token, unauthenticated remote code execution, and various other vulnerabilities. Multiple metasploit modules included and various versions are affected by the various vulnerabilities.

tags | exploit, remote, vulnerability, code execution
advisories | CVE-2018-17888, CVE-2018-17890, CVE-2018-17892, CVE-2018-17894, CVE-2018-17934, CVE-2018-17936, CVE-2018-18982
MD5 | cdf8d7a388158a049931b16393f4c160
Comodo KORUGAN VM 1.9.3.1100 Cross Site Scripting
Posted Jan 21, 2019
Authored by Ozer Goker

Comodo KORUGAN VM version 1.9.3.1100 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | b046b379ca2293375d2e60e3087b3412
Comodo KORUGAN LITE 1.6.5.1024 Cross Site Scripting
Posted Jan 21, 2019
Authored by Ozer Goker

Comodo KORUGAN LITE version 1.6.5.1024 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 0f2b50dbce298ea789877797c24f4f7f
SIDU 6.0 Cross Site Scripting
Posted Jan 21, 2019
Authored by Ozer Goker

SIDU version 6.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 5e4f816770e7138cb9b77dc5317bdb89
CA Service Desk Manager 14.1 / 17 Authentication Bypass
Posted Jan 21, 2019
Authored by Kevin Kotas, Bui Duy Hiep | Site www3.ca.com

CA Technologies Support is alerting customers to multiple potential risks with CA Service Desk Manager. Multiple vulnerabilities exist that can allow a remote attacker to access sensitive information or possibly gain additional privileges. CA published solutions to address the vulnerabilities. The first vulnerability is due to how survey access is implemented. A malicious actor can access and submit survey information without authentication. The second vulnerability allows for a malicious actor to gain additional privileges. Versions affected include 14.1 and 17.

tags | advisory, remote, vulnerability
advisories | CVE-2018-19634, CVE-2018-19635
MD5 | eb02560e2cfc9f65108956208ab178c4
Joomla Akeeba Backup 6.3.3 Database Disclosure
Posted Jan 21, 2019
Authored by KingSkrupellos

Joomla Akeeba Backup component version 6.3.3 suffers from a database disclosure vulnerability.

tags | exploit, info disclosure
MD5 | 435b633fb0b66b68d5408e4b86004e9d
PHP Dashboards NEW 5.8 Local File Inclusion
Posted Jan 21, 2019
Authored by Ihsan Sencan

PHP Dashboards NEW version 5.8 suffers from a local file inclusion vulnerability.

tags | exploit, local, php, file inclusion
MD5 | b848b3c5fb7d6f6a2ec83b189546a946
GattLib 0.2 Stack Buffer Overflow
Posted Jan 21, 2019
Authored by Dhiraj Mishra

GattLib version 0.2 suffers from a stack buffer overflow vulnerability.

tags | exploit, overflow
advisories | CVE-2019-6498
MD5 | 5e660817d7bb750ffdf15cc68bd1810b
Adianti Framework 5.5.0 SQL Injection
Posted Jan 21, 2019
Authored by Joner de Mello Assolin

Adianti Framework version 5.5.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | fd7b54a97dd4001f57b25b2eecb5a8db
PHP Uber-style GeoTracking 1.1 SQL Injection
Posted Jan 21, 2019
Authored by Ihsan Sencan

PHP Uber-style GeoTracking version 1.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, php, sql injection
MD5 | c092f1b6f1b450804a9346cc8921b86d
Reservic 1.0 SQL Injection
Posted Jan 21, 2019
Authored by Ihsan Sencan

Reservic version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | a7e8402e3d13112ed57369749b94bed7
PHP Dashboards NEW 5.8 SQL Injection
Posted Jan 21, 2019
Authored by Ihsan Sencan

PHP Dashboards NEW version 5.8 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, php, sql injection
MD5 | 5fdb018136ad54f96f79acc218745969
MoneyFlux 1.0 SQL Injection
Posted Jan 21, 2019
Authored by Ihsan Sencan

MoneyFlux version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 395991386379d15eb111060efdd248a2
Echo Mirage 3.1 Buffer Overflow
Posted Jan 21, 2019
Authored by InitD Community

Echo Mirage version 3.1 suffers from a buffer overflow vulnerability.

tags | exploit, overflow
MD5 | 848dbd7ed48e656c8e7856a20364c3cc
Positive Hack Days 9 Call For Papers
Posted Jan 21, 2019
Site phdays.com

Call For Papers for Positive Hack Days 9 which will take place in Moscow, Russia.

tags | paper, conference
MD5 | 3e627c51705d3552b7565be7b1d0603e
Open-Xchange OX App Suite Cross Site Scripting / SSRF
Posted Jan 21, 2019
Authored by Martin Heiland, Secator, Zhihua Yao, stemcloud, Gamal negm eldin

Open-Xchange OX App Suite suffers from cross site scripting and server-side request forgery vulnerabilities. The vulnerabilities spawn a multitude of versions.

tags | exploit, vulnerability, xss
advisories | CVE-2018-13103, CVE-2018-13104
MD5 | 0f83a06f2870765960fa46b3d0ee12cc
Coman Company Management System 1.0 SQL Injection
Posted Jan 21, 2019
Authored by Ihsan Sencan

Coman Company Management System version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 4daaf1cfde641bf20b7bf009ef0b759d
Page 1 of 1
Back1Next

File Archive:

October 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    25 Files
  • 2
    Oct 2nd
    13 Files
  • 3
    Oct 3rd
    1 Files
  • 4
    Oct 4th
    1 Files
  • 5
    Oct 5th
    15 Files
  • 6
    Oct 6th
    15 Files
  • 7
    Oct 7th
    15 Files
  • 8
    Oct 8th
    11 Files
  • 9
    Oct 9th
    3 Files
  • 10
    Oct 10th
    1 Files
  • 11
    Oct 11th
    1 Files
  • 12
    Oct 12th
    8 Files
  • 13
    Oct 13th
    12 Files
  • 14
    Oct 14th
    23 Files
  • 15
    Oct 15th
    4 Files
  • 16
    Oct 16th
    13 Files
  • 17
    Oct 17th
    1 Files
  • 18
    Oct 18th
    1 Files
  • 19
    Oct 19th
    27 Files
  • 20
    Oct 20th
    41 Files
  • 21
    Oct 21st
    18 Files
  • 22
    Oct 22nd
    10 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close