exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 16 of 16 RSS Feed

Files Date: 2019-03-21

Netartmedia Vlog System SQL Injection
Posted Mar 21, 2019
Authored by Ahmet Umit Bayram

Netartmedia Vlog System suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 3065e78776928ce93681dc474c38a1f577df20a98423dfd6a466b971013fc67e
Lynis Auditing Tool 2.7.3
Posted Mar 21, 2019
Authored by Michael Boelen | Site cisofy.com

Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.

Changes: Added detection for Lynis being scheduled (e.g. cronjob). Improved logging and various other changes were added.
tags | tool, scanner
systems | unix
SHA-256 | d05ea35b7739ccb6dbd9f0bbe5556cf759d65e3e4526f50b1d453ef3a9aad42b
NSS Netscape Certificate Sequences CERT_DecodeCertPackage() Crash
Posted Mar 21, 2019
Authored by Tavis Ormandy, Google Security Research

NSS suffers from a NULL dereference issue when parsing Netscape Certificate Sequences in CERT_DecodeCertPackage().

tags | exploit
SHA-256 | d7adf827b738a3a567689a46c8203967c3089100a538ccf2c1e1cb2e8236ad6c
Sourcetree Git Arbitrary Code Execution / URL Handling
Posted Mar 21, 2019
Authored by Atlassian, Terry Zhang

Sourcetree for macOS versions below 3.1.1 to 1.2 and Sourcetree for Windows versions below 3.0.17 to 0.5a suffer from code execution vulnerabilities related to the inclusion of git, a Mercurial hooks argument injection vulnerability, and a URI handling vulnerability.

tags | advisory, vulnerability, code execution
systems | windows
advisories | CVE-2018-17456, CVE-2018-20234, CVE-2018-20235, CVE-2018-20236
SHA-256 | b0d0c095cbfecc82d058925a21b052e5cd29e36b802d25a05e5dae99f9f856dc
JFrog Artifactory Administrator Authentication Bypass
Posted Mar 21, 2019
Authored by CipherTechs Red Team | Site ciphertechs.com

JFrog Artifactory versions prior to 6.8.7 suffer from an administrative access bypass vulnerability due to relying on an X-Forwarded-For header.

tags | exploit, bypass
advisories | CVE-2019-9733
SHA-256 | 3f058bd4d481bf6da8d3e63c7f031f53fd958157f910b3a6ec4c6188b60f06e5
Debian Security Advisory 4412-1
Posted Mar 21, 2019
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4412-1 - It was discovered that missing input sanitizing in the file module of Drupal, a fully-featured content management framework, could result in cross-site scripting.

tags | advisory, xss
systems | linux, debian
SHA-256 | 32855a70eee75487169ab0630412997adaa9acd953e4c59aebbd104f0f3c08a1
Debian Security Advisory 4411-1
Posted Mar 21, 2019
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4411-1 - Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code.

tags | advisory, web, arbitrary
systems | linux, debian
advisories | CVE-2018-18506, CVE-2019-9788, CVE-2019-9790, CVE-2019-9791, CVE-2019-9792, CVE-2019-9793, CVE-2019-9795, CVE-2019-9796
SHA-256 | fcb18ad0cad11263764d2fdaa5e06b6c637d6f41a772527426afc3ddb7b92a21
Debian Security Advisory 4410-1
Posted Mar 21, 2019
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4410-1 - A memory disclosure vulnerability was discovered in OpenJDK, an implementation of the Oracle Java platform, resulting in information disclosure or bypass of sandbox restrictions.

tags | advisory, java, info disclosure
systems | linux, debian
advisories | CVE-2019-2422
SHA-256 | a0d0ef18e86a26101463b7f58e4326ccbec3d0e0f3920a3f967e1db3a6853705
Ubuntu Security Notice USN-3912-1
Posted Mar 21, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3912-1 - It was discovered that the GDK-PixBuf library did not properly handle certain BMP images. If an user or automated system were tricked into opening a specially crafted BMP file, a remote attacker could use this flaw to cause GDK-PixBuf to crash, resulting in a denial of service, or possibly execute arbitrary code.

tags | advisory, remote, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2017-12447
SHA-256 | a10aed40f20da1b4eaa39e7529d4927cd726af120d9fd9246586d8d4125fc60a
DVD X Player 5.5.3 Buffer Overflow
Posted Mar 21, 2019
Authored by Paolo Perego

DVD X Player version 5.5.3 suffers from a buffer overflow vulnerability.

tags | exploit, overflow
advisories | CVE-2018-9128
SHA-256 | 94e0336f522b3292ba5eaf938f4820bbd39d3dd88b00ab728e93dddfde2c8dde
Bootstrapy CMS SQL Injection
Posted Mar 21, 2019
Authored by Ahmet Umit Bayram

Bootstrapy CMS suffers from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
SHA-256 | fa692b1e902584a2df38b2d7d253a767de2aae3eb37b8dc2655314622158d2c4
Rails 5.2.1 Arbitrary File Content Disclosure
Posted Mar 21, 2019
Authored by NotoriousRebel

Rails version 5.2.1 suffers from an arbitrary file content disclosure vulnerability.

tags | exploit, arbitrary, info disclosure
advisories | CVE-2019-5418
SHA-256 | 007277117038461287719eae52fd57553dd9ebf65a8c34f05dd131ff937aba4b
Placeto CMS Alpha 4 SQL Injection
Posted Mar 21, 2019
Authored by Abdullah Celebi

Placeto CMS Alpha version 4 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | f26c459dada2dd8c69c349a052452e85b73817f17ab828677daa002e12633181
The Company Business Website CMS SQL Injection
Posted Mar 21, 2019
Authored by Ahmet Umit Bayram

The Company Business Website CMS suffers from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
SHA-256 | b043954d4156589291f659d280bc644f3e43e6d297923dc7422a5234cba49742
uHotelBooking System SQL Injection
Posted Mar 21, 2019
Authored by Ahmet Umit Bayram

uHotelBooking System suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | b05dc2496c688d5258cb5ce154ecb8abb22d8b6c6b2f66332c314eeb9ac6a671
Canarytokens 2019-03-01 Detection Bypass
Posted Mar 21, 2019
Authored by Gionathan Reale, Benjamin Zink Loft

Canarytokens 2019-03-01 suffers from a detection bypass vulnerability.

tags | exploit, bypass
advisories | CVE-2019-9768
SHA-256 | 43c94bb75cbedba48d36affbb7e3375d2bd1424fd793b627b033cbbdc0dd3ac1
Page 1 of 1
Back1Next

File Archive:

March 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    16 Files
  • 2
    Mar 2nd
    0 Files
  • 3
    Mar 3rd
    0 Files
  • 4
    Mar 4th
    32 Files
  • 5
    Mar 5th
    28 Files
  • 6
    Mar 6th
    42 Files
  • 7
    Mar 7th
    17 Files
  • 8
    Mar 8th
    13 Files
  • 9
    Mar 9th
    0 Files
  • 10
    Mar 10th
    0 Files
  • 11
    Mar 11th
    15 Files
  • 12
    Mar 12th
    19 Files
  • 13
    Mar 13th
    21 Files
  • 14
    Mar 14th
    38 Files
  • 15
    Mar 15th
    15 Files
  • 16
    Mar 16th
    0 Files
  • 17
    Mar 17th
    0 Files
  • 18
    Mar 18th
    10 Files
  • 19
    Mar 19th
    0 Files
  • 20
    Mar 20th
    0 Files
  • 21
    Mar 21st
    0 Files
  • 22
    Mar 22nd
    0 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    0 Files
  • 26
    Mar 26th
    0 Files
  • 27
    Mar 27th
    0 Files
  • 28
    Mar 28th
    0 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close