what you don't know can hurt you
Showing 1 - 17 of 17 RSS Feed

Files Date: 2019-01-21

NUUO CMS Session Tokens / Traversal / SQL Injection
Posted Jan 21, 2019
Authored by Pedro Ribeiro

NUUO CMS suffers from directory traversal, predictable session token, unauthenticated remote code execution, and various other vulnerabilities. Multiple metasploit modules included and various versions are affected by the various vulnerabilities.

tags | exploit, remote, vulnerability, code execution
advisories | CVE-2018-17888, CVE-2018-17890, CVE-2018-17892, CVE-2018-17894, CVE-2018-17934, CVE-2018-17936, CVE-2018-18982
MD5 | cdf8d7a388158a049931b16393f4c160
Comodo KORUGAN VM 1.9.3.1100 Cross Site Scripting
Posted Jan 21, 2019
Authored by Ozer Goker

Comodo KORUGAN VM version 1.9.3.1100 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | b046b379ca2293375d2e60e3087b3412
Comodo KORUGAN LITE 1.6.5.1024 Cross Site Scripting
Posted Jan 21, 2019
Authored by Ozer Goker

Comodo KORUGAN LITE version 1.6.5.1024 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 0f2b50dbce298ea789877797c24f4f7f
SIDU 6.0 Cross Site Scripting
Posted Jan 21, 2019
Authored by Ozer Goker

SIDU version 6.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 5e4f816770e7138cb9b77dc5317bdb89
CA Service Desk Manager 14.1 / 17 Authentication Bypass
Posted Jan 21, 2019
Authored by Kevin Kotas, Bui Duy Hiep | Site www3.ca.com

CA Technologies Support is alerting customers to multiple potential risks with CA Service Desk Manager. Multiple vulnerabilities exist that can allow a remote attacker to access sensitive information or possibly gain additional privileges. CA published solutions to address the vulnerabilities. The first vulnerability is due to how survey access is implemented. A malicious actor can access and submit survey information without authentication. The second vulnerability allows for a malicious actor to gain additional privileges. Versions affected include 14.1 and 17.

tags | advisory, remote, vulnerability
advisories | CVE-2018-19634, CVE-2018-19635
MD5 | eb02560e2cfc9f65108956208ab178c4
Joomla Akeeba Backup 6.3.3 Database Disclosure
Posted Jan 21, 2019
Authored by KingSkrupellos

Joomla Akeeba Backup component version 6.3.3 suffers from a database disclosure vulnerability.

tags | exploit, info disclosure
MD5 | 435b633fb0b66b68d5408e4b86004e9d
PHP Dashboards NEW 5.8 Local File Inclusion
Posted Jan 21, 2019
Authored by Ihsan Sencan

PHP Dashboards NEW version 5.8 suffers from a local file inclusion vulnerability.

tags | exploit, local, php, file inclusion
MD5 | b848b3c5fb7d6f6a2ec83b189546a946
GattLib 0.2 Stack Buffer Overflow
Posted Jan 21, 2019
Authored by Mishra Dhiraj

GattLib version 0.2 suffers from a stack buffer overflow vulnerability.

tags | exploit, overflow
advisories | CVE-2019-6498
MD5 | 5e660817d7bb750ffdf15cc68bd1810b
Adianti Framework 5.5.0 SQL Injection
Posted Jan 21, 2019
Authored by Joner de Mello Assolin

Adianti Framework version 5.5.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | fd7b54a97dd4001f57b25b2eecb5a8db
PHP Uber-style GeoTracking 1.1 SQL Injection
Posted Jan 21, 2019
Authored by Ihsan Sencan

PHP Uber-style GeoTracking version 1.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, php, sql injection
MD5 | c092f1b6f1b450804a9346cc8921b86d
Reservic 1.0 SQL Injection
Posted Jan 21, 2019
Authored by Ihsan Sencan

Reservic version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | a7e8402e3d13112ed57369749b94bed7
PHP Dashboards NEW 5.8 SQL Injection
Posted Jan 21, 2019
Authored by Ihsan Sencan

PHP Dashboards NEW version 5.8 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, php, sql injection
MD5 | 5fdb018136ad54f96f79acc218745969
MoneyFlux 1.0 SQL Injection
Posted Jan 21, 2019
Authored by Ihsan Sencan

MoneyFlux version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 395991386379d15eb111060efdd248a2
Echo Mirage 3.1 Buffer Overflow
Posted Jan 21, 2019
Authored by InitD Community

Echo Mirage version 3.1 suffers from a buffer overflow vulnerability.

tags | exploit, overflow
MD5 | 848dbd7ed48e656c8e7856a20364c3cc
Positive Hack Days 9 Call For Papers
Posted Jan 21, 2019
Site phdays.com

Call For Papers for Positive Hack Days 9 which will take place in Moscow, Russia.

tags | paper, conference
MD5 | 3e627c51705d3552b7565be7b1d0603e
Open-Xchange OX App Suite Cross Site Scripting / SSRF
Posted Jan 21, 2019
Authored by Martin Heiland, Secator, Zhihua Yao, stemcloud, Gamal negm eldin

Open-Xchange OX App Suite suffers from cross site scripting and server-side request forgery vulnerabilities. The vulnerabilities spawn a multitude of versions.

tags | exploit, vulnerability, xss
advisories | CVE-2018-13103, CVE-2018-13104
MD5 | 0f83a06f2870765960fa46b3d0ee12cc
Coman Company Management System 1.0 SQL Injection
Posted Jan 21, 2019
Authored by Ihsan Sencan

Coman Company Management System version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 4daaf1cfde641bf20b7bf009ef0b759d
Page 1 of 1
Back1Next

File Archive:

December 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    1 Files
  • 2
    Dec 2nd
    16 Files
  • 3
    Dec 3rd
    17 Files
  • 4
    Dec 4th
    23 Files
  • 5
    Dec 5th
    11 Files
  • 6
    Dec 6th
    9 Files
  • 7
    Dec 7th
    0 Files
  • 8
    Dec 8th
    0 Files
  • 9
    Dec 9th
    0 Files
  • 10
    Dec 10th
    0 Files
  • 11
    Dec 11th
    0 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close