exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 21 of 21 RSS Feed

Files Date: 2019-02-26

Red Hat Security Advisory 2019-0415-01
Posted Feb 26, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-0415-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include a race condition vulnerability.

tags | advisory, kernel
systems | linux, redhat
advisories | CVE-2018-10902
SHA-256 | 21480fe02116b1998f4a25a82c619e388937930d0a494affab02c1646b7ebe5b
Red Hat Security Advisory 2019-0420-01
Posted Feb 26, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-0420-01 - The polkit packages provide a component for controlling system-wide privileges. This component provides a uniform and organized way for non-privileged processes to communicate with privileged ones. Issues addressed include an auth hijacking vulnerability.

tags | advisory
systems | linux, redhat
advisories | CVE-2019-6133
SHA-256 | 9d215922debd8fb7cdfec01420ddbc6e0b621cb31a7eaaea23b02be171fb8e8d
DomainMOD 4.11.01 Custom Domain Cross Site Scripting
Posted Feb 26, 2019
Authored by Mohammed Abdul Raheem

DomainMOD version 4.11.01 suffers from a cross site scripting vulnerability in the custom domains fields page.

tags | exploit, xss
advisories | CVE-2018-19750
SHA-256 | b7f2bf6a2c81c5c51b98752fce5e1a6eef8695a29d0c56a434778c0e32ac0dd7
XOR Encoder / Decoder
Posted Feb 26, 2019
Authored by Daniele Votta

45 bytes small Linux/x86 XOR encoder and decoder shellcode tool.

tags | x86, shellcode
systems | linux
SHA-256 | 53cc6383c1503adc9fee0b000a25b33ee5a694c3e686d5c465a656763c1d5585
vBulletin 4.2.0 ChangUonDyU Chatbox 3.6.0 Cross Site Scripting
Posted Feb 26, 2019
Authored by KingSkrupellos

vBulletin version 4.2.0 with ChangUonDyU Chatbox plugin version 3.6.0 suffers from cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | bb1231371b917c4f9e749a0a46ebf3e8059e33f4abd5c0f9cd3a8c41f8b16d9a
Ubuntu Security Notice USN-3894-1
Posted Feb 26, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3894-1 - It was discovered that GNOME Keyring incorrectly cleared out credentials supplied to the PAM module. A local attacker could possibly use this issue to discover login credentials.

tags | advisory, local
systems | linux, ubuntu
advisories | CVE-2018-20781
SHA-256 | a20948c7dee901d679f7307e7614b3e46af63d7076b753513dd72f2fc7cac6fa
Red Hat Security Advisory 2019-0408-01
Posted Feb 26, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-0408-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. Issues addressed include a file descriptor handling issue in runc.

tags | advisory
systems | linux, redhat
advisories | CVE-2019-5736
SHA-256 | f242eb1bc1a662c6c05d8031be82a78052768334224c021465f22ec8423fba33
SQLiteManager 1.2.0 / 1.2.4 SQL Injection
Posted Feb 26, 2019
Authored by Rafael Pedrero

SQLiteManager versions 1.2.0 and 1.2.4 suffer from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2019-9083
SHA-256 | f05d89a50e34425c7eaf33707af3151232c78c66c9d035d35ba381c9d994a25e
Ubuntu Security Notice USN-3866-3
Posted Feb 26, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3866-3 - USN-3866-2 fixed a regression in Ghostscript. The Ghostscript update introduced a new regression that resulted in certain pages being printed with a blue background. This update fixes the problem. Tavis Ormandy discovered that Ghostscript incorrectly handled certain PostScript files. If a user or automated system were tricked into processing a specially crafted file, a remote attacker could possibly use this issue to access arbitrary files, execute arbitrary code, or cause a denial of service. Various other issues were also addressed.

tags | advisory, remote, denial of service, arbitrary
systems | linux, ubuntu
SHA-256 | d69d2295984ccb007c24c8b395ba6bff41749e2b0e745bf4389a35e822f816ef
OpenSSL Security Advisory 20190226
Posted Feb 26, 2019
Site openssl.org

OpenSSL Security Advisory 20190226 - If an application encounters a fatal protocol error and then calls SSL_shutdown() twice (once to send a close_notify, and once to receive one) then OpenSSL can respond differently to the calling application if a 0 byte record is received with invalid padding compared to if a 0 byte record is received with an invalid MAC. If the application then behaves differently based on that in a way that is detectable to the remote peer, then this amounts to a padding oracle that could be used to decrypt data.

tags | advisory, remote, protocol
advisories | CVE-2019-1559
SHA-256 | 7b85f385cb07ba1c0a0620e5de69b40ca553365965e5ac92f646e4272b637156
SVG nanosvg Library Memory Corruption / Denial Of Service
Posted Feb 26, 2019
Authored by Sebastian Neef

The SVG nanosvg library suffers from a denial of service vulnerability due to a memory corruption bug.

tags | exploit, denial of service
advisories | CVE-2019-1000032
SHA-256 | 7121b6e7ae15be24c467211cf5138837d1daec8f142753d900feb0b312c45854
DomainMOD 4.11.01 Registrar Cross Site Scripting
Posted Feb 26, 2019
Authored by Mohammed Abdul Raheem

DomainMOD versions 4.11.01 and below suffer from a cross site scripting vulnerability in registrar-account.php.

tags | exploit, php, xss
advisories | CVE-2018-19752
SHA-256 | fb3c13ee5af93f58179b2e96839a21d0698d43b4060a3967b40103aa4ebee593
DomainMOD 4.11.01 Custom SSL Fields Cross Site Scripting
Posted Feb 26, 2019
Authored by Mohammed Abdul Raheem

DomainMOD versions 4.11.01 and below suffer from a cross site scripting vulnerability in the custom SSL fields add.php.

tags | exploit, php, xss
advisories | CVE-2018-19751
SHA-256 | 05977e11b73c2833fdaaa501773507091579ef308f50b23ef32bf547ae473766
DomainMOD 4.11.01 Owner Name Cross Site Scripting
Posted Feb 26, 2019
Authored by Mohammed Abdul Raheem

DomainMOD versions 4.11.01 and below suffer from a cross site scripting vulnerability in the Owner name field of account-owner.php.

tags | exploit, php, xss
advisories | CVE-2018-19749
SHA-256 | 8c6b6d9c8b5f3e4f493937dfa8e671e080e63b3584701e1afadc6cba200d3bd8
DomainMOD 4.11.01 DisplayName Cross Site Scripting
Posted Feb 26, 2019
Authored by Mohammed Abdul Raheem

DomainMOD versions 4.11.01 and below suffer from a cross site scripting vulnerability in DisplayName.

tags | exploit, xss
advisories | CVE-2018-19892
SHA-256 | cb91c00941125ee2f7193c04c0e240436467bcbf4a2b525960e7bf0a33a4ec57
DomainMOD 4.11.01 registrar-accounts.php Cross Site Scripting
Posted Feb 26, 2019
Authored by Mohammed Abdul Raheem

DomainMOD versions 4.11.01 and below suffer from a cross site scripting vulnerability in registrar-accounts.php.

tags | exploit, php, xss
advisories | CVE-2018-19913
SHA-256 | 5453682baf4f30abc0308fc88b1bc6db6d1e94273321de2a9f1434671de78292
DomainMOD 4.11.01 ssl-provider-name Cross Site Scripting
Posted Feb 26, 2019
Authored by Mohammed Abdul Raheem

DomainMOD versions 4.11.01 and below suffer from a cross site scripting vulnerability in ssl-provider-name.

tags | exploit, xss
advisories | CVE-2018-20009
SHA-256 | 443161783c25f17c28f2be48b93c707ae727e8621f6a955693c68bfe15ff19be
DomainMOD 4.11.01 ssl-accounts.php Cross Site Scripting
Posted Feb 26, 2019
Authored by Mohammed Abdul Raheem

DomainMOD versions 4.11.01 and below suffer from a cross site scripting vulnerability in ssl-accounts.php.

tags | exploit, php, xss
advisories | CVE-2018-20010
SHA-256 | f543434e1aa6b15eb87c0fde3885510f0c1215590995a0b0d40b982532fedb84
DomainMOD 4.11.01 category.php Cross Site Scripting
Posted Feb 26, 2019
Authored by Mohammed Abdul Raheem

DomainMOD versions 4.11.01 and below suffer from a cross site scripting vulnerability in category.php.

tags | exploit, php, xss
advisories | CVE-2018-20011
SHA-256 | 76e673fe1daced79a431afe37ce643bb15c42edfa5b1d651403002d181e6ab24
Simple Online Hotel Reservation System SQL Injection
Posted Feb 26, 2019
Authored by Mr Winst0n

Simple Online Hotel Reservation System suffers from bypass and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
SHA-256 | 92532338eb50a34e5cd0249a6061d933aee559640ce2b33fd389d8c6ac0686a6
PDF Viewer Signatures Broken
Posted Feb 26, 2019
Authored by Christian Mainka, Vladislav Mladenov, Jorg Schwenk, Karsten Meyer zu Sel-hausen, Martin Grothe | Site nds.ruhr-uni-bochum.de

Researchers from Ruhr-University Bochum in Germany have broken digital signatures on PDFs and managed to create fake signatures on 21 of 22 viewer apps and five out of the seven online PDF digital signing services. This archive contains both whitepapers produced by the university.

tags | exploit, paper
SHA-256 | 88efe7b286cbc56d82c5c5093004db6c1d519f7e41fd7cd34e4b3af7a7a513a3
Page 1 of 1
Back1Next

File Archive:

November 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    30 Files
  • 2
    Nov 2nd
    0 Files
  • 3
    Nov 3rd
    0 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    44 Files
  • 6
    Nov 6th
    18 Files
  • 7
    Nov 7th
    9 Files
  • 8
    Nov 8th
    8 Files
  • 9
    Nov 9th
    3 Files
  • 10
    Nov 10th
    0 Files
  • 11
    Nov 11th
    14 Files
  • 12
    Nov 12th
    20 Files
  • 13
    Nov 13th
    63 Files
  • 14
    Nov 14th
    18 Files
  • 15
    Nov 15th
    8 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    18 Files
  • 19
    Nov 19th
    7 Files
  • 20
    Nov 20th
    13 Files
  • 21
    Nov 21st
    6 Files
  • 22
    Nov 22nd
    48 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    60 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    44 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close