exploit the possibilities
Showing 1 - 25 of 30 RSS Feed

Files Date: 2019-03-27

CMS Made Simple (CMSMS) Showtime2 File Upload Remote Command Execution
Posted Mar 27, 2019
Authored by Daniele Scanu, Fabio Cogno | Site metasploit.com

This Metasploit module exploits a file upload vulnerability that allows for remote command execution in Showtime2 module versions 3.6.2 and below in CMS Made Simple (CMSMS). An authenticated user with "Use Showtime2" privilege could exploit the vulnerability. The vulnerability exists in the Showtime2 module, where the class "class.showtime2_image.php" does not ensure that a watermark file has a standard image file extension (GIF, JPG, JPEG, or PNG). Tested on Showtime2 3.6.2, 3.6.1, 3.6.0, 3.5.4, 3.5.3, 3.5.2, 3.5.1, 3.5.0, 3.4.5, 3.4.3, 3.4.2 on CMS Made Simple (CMSMS) 2.2.9.1.

tags | exploit, remote, php, file upload
advisories | CVE-2019-9692
MD5 | 34616f7d15896f8238efb1b0c1d26897
Oracle Weblogic Server Deserialization Remote Code Execution
Posted Mar 27, 2019
Authored by Steve Breen, Aaron Soto, Andres Rodriguez | Site metasploit.com

This Metasploit module demonstrates that an unauthenticated attacker with network access to the Oracle Weblogic Server T3 interface can send a serialized object (weblogic.jms.common.StreamMessag eImpl) to the interface to execute code on vulnerable hosts.

tags | exploit
advisories | CVE-2015-4852
MD5 | 0d0f0ea424fe79508cb57b9319ad05f5
SpiderMonkey IonMonkey Type Confusion
Posted Mar 27, 2019
Authored by saelo, Google Security Research

A bug in IonMonkeys type inference system when JIT compiling and entering a constructor function via on-stack replacement (OSR) allows the compilation of JITed functions that cause type confusions between arbitrary objects.

tags | exploit, arbitrary
advisories | CVE-2019-9791
MD5 | 2d9234f04f13771cc4ba74f08b736649
GnuTLS verify_crt() Use-After-Free
Posted Mar 27, 2019
Authored by Tavis Ormandy, Google Security Research

This is a critical memory corruption vulnerability in any API backed by verify_crt(), including gnutls_x509_trust_list_verify_crt() and related routines in GnuTLS.

tags | exploit
MD5 | ccebe291a8ca3ffea320b528513b5f23
Clam AntiVirus Toolkit 0.101.2
Posted Mar 27, 2019
Authored by Tomasz Kojm | Site clamav.net

Clam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a command-line scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software.

Changes: ClamAV 0.101.2 is a patch release to address a handful of security related bugs.
tags | tool, virus
systems | unix
advisories | CVE-2019-1785, CVE-2019-1786, CVE-2019-1787, CVE-2019-1788, CVE-2019-1789, CVE-2019-1798
MD5 | faeb0e286e76c2a26e2e10845e4b68db
Fat Free CRM 0.19.0 HTML Injection
Posted Mar 27, 2019
Authored by Ismail Tasdelen

Fat Free CRM version 0.19.0 suffers from an html injection vulnerability.

tags | exploit
advisories | CVE-2019-10226
MD5 | 6c1bb794f0cdb558f0592357baa1d0a3
Cisco RV320 Command Injection
Posted Mar 27, 2019
Site redteam-pentesting.de

RedTeam Pentesting discovered a command injection vulnerability in the web-based certificate generator feature of the Cisco RV320 router which was inadequately patched by the vendor.

tags | exploit, web
systems | cisco
advisories | CVE-2019-1652
MD5 | 2b037eeb76b185a1ecc82c5e9b3a9b69
Cisco RV320 Unauthenticated Diagnostic Data Retrieval
Posted Mar 27, 2019
Site redteam-pentesting.de

RedTeam Pentesting discovered that the Cisco RV320 router still exposes sensitive diagnostic data without authentication via the device's web interface due to an inadequate fix by the vendor.

tags | exploit, web
systems | cisco
advisories | CVE-2019-1653
MD5 | 3c437f9164cf1a024c6fec66988f9cf5
Cisco RV320 Unauthenticated Configuration Export
Posted Mar 27, 2019
Site redteam-pentesting.de

RedTeam Pentesting discovered that the configuration of a Cisco RV320 router can still be exported without authentication via the device's web interface due to an inadequate fix by the vendor.

tags | exploit, web
systems | cisco
advisories | CVE-2019-1653
MD5 | 08368f9e046725eb52f22f696d66e165
Ubuntu Security Notice USN-3923-1
Posted Mar 27, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3923-1 - Michael Hanselmann discovered that QEMU incorrectly handled the Media Transfer Protocol. An attacker inside the guest could use this issue to read or write arbitrary files and cause a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 18.10. Michael Hanselmann discovered that QEMU incorrectly handled the Media Transfer Protocol. An attacker inside the guest could use this issue to read arbitrary files, contrary to expectations. This issue only affected Ubuntu 18.04 LTS and Ubuntu 18.10. Various other issues were also addressed.

tags | advisory, denial of service, arbitrary, protocol
systems | linux, ubuntu
advisories | CVE-2018-16867, CVE-2018-16872, CVE-2018-19489, CVE-2018-20124, CVE-2018-20126, CVE-2018-20191, CVE-2018-20216, CVE-2019-3812, CVE-2019-6778
MD5 | b024339c2db287e9005b13ab875a6358
Red Hat Security Advisory 2019-0672-01
Posted Mar 27, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-0672-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 60.6.1 ESR.

tags | advisory, web
systems | linux, redhat
advisories | CVE-2019-9810, CVE-2019-9813
MD5 | 572c84ab7ee6615b67baf8721322b4db
Red Hat Security Advisory 2019-0671-01
Posted Mar 27, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-0671-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 60.6.1 ESR.

tags | advisory, web
systems | linux, redhat
advisories | CVE-2019-9810, CVE-2019-9813
MD5 | 5bdd8052f828a6a75e3e453fc69255ec
Joomla ARI Image Slider 2.2.0 Cross Site Request Forgery / Shell Upload
Posted Mar 27, 2019
Authored by KingSkrupellos

Joomla ARI Image Slider component version 2.2.0 suffers from cross site request forgery and remote shell upload vulnerabilities.

tags | exploit, remote, shell, vulnerability, csrf
MD5 | eef0a02386ca655d70a2fe3ca6d2fd15
Razer Laptop CVE-2018-4251 Repeat
Posted Mar 27, 2019
Authored by Bailey Fox

Razer laptops ship with SPI flash set to full read/write and the Intel CPU is left in ME Manufacturing Mode.

tags | advisory
MD5 | 67f7a9fd9f67581a53fa5cc96237f9a9
Jettweb Hazir Rent A Car Scripti 4 SQL Injection
Posted Mar 27, 2019
Authored by Ahmet Umit Bayram

Jettweb Hazir Rent A Car Scripti version 4 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 90a98f8ae6a9c9f8c14d3285b5882c7e
Firefox Array.prototype.slice Buffer Overflow
Posted Mar 27, 2019
Authored by Xuechiyaobai

Firefox versions prior to 66.0.1 suffer from an Array.prototype.slice buffer overflow vulnerability.

tags | exploit, overflow
advisories | CVE-2019-9810
MD5 | 05b0051c9f42aaa5df708e6cd925a7ce
XooDigital SQL Injection
Posted Mar 27, 2019
Authored by Ahmet Umit Bayram

XooDigital suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 0e22247b2ccdca0ae95022869357cf17
XooGallery SQL Injection
Posted Mar 27, 2019
Authored by Ahmet Umit Bayram

XooGallery suffers from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
MD5 | 265ce632bb98229b1933811c5a7cbb85
Rukovoditel ERP And CRM 2.4.1 Cross Site Scripting
Posted Mar 27, 2019
Authored by Javier Olmedo

Rukovoditel ERP and CRM version 2.4.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2019-7400
MD5 | 8c4bf9a039de5f232ce02740747bb195
Jettweb Php Hazir ilan Sitesi Scripti 2 SQL Injection
Posted Mar 27, 2019
Authored by Ahmet Umit Bayram

Jettweb Php Hazir ilan Sitesi Scripti version 2 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, php, sql injection
MD5 | 998fc2a9a635b104966962276fba0d47
SJS Simple Job Script SQL Injection / Cross Site Scripting
Posted Mar 27, 2019
Authored by Ahmet Umit Bayram

SJS Simple Job Script suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | 41062db55bc5321f09135587b0233241
WordPress WP-Forum 1.7.8 Database Disclosure
Posted Mar 27, 2019
Authored by KingSkrupellos

WordPress WP-Forum plugin version 1.7.8 suffers from a database disclosure vulnerability.

tags | exploit, info disclosure
MD5 | 0137b5bca9fe6577608f36d8b7234868
Microsoft Windows Win32k CVE-2019-0808 Local Privilege Escalation
Posted Mar 27, 2019
Authored by ze0r

Microsoft Windows Win32k local privilege escalation proof of concept exploit.

tags | exploit, local, proof of concept
systems | windows
advisories | CVE-2019-0808
MD5 | 54d60becfca69a9adfa1742ac481ac3e
WordPress AND-AntiBounce 1.0.3 Open Redirection
Posted Mar 27, 2019
Authored by KingSkrupellos

WordPress AND-AntiBounce plugin version 1.0.3 suffers from an open redirection vulnerability.

tags | exploit
MD5 | 5552757a8991deeea39014271523b45a
EMC Networker Remote Code Execution
Posted Mar 27, 2019
Site emc.com

EMC NetWorker may potentially be vulnerable to an unauthenticated remote code execution vulnerability in the Networker Client execution service (nsrexecd) when oldauth authentication method is used. An unauthenticated remote attacker could send arbitrary commands via RPC service to be executed on the host system with the privileges of the nsrexecd service, which runs with administrative privileges. Affected includes EMC NetWorker versions 8.2.x, versions 9.0.x, versions prior to 9.1.1.5, and versions prior to 9.2.1.

tags | advisory, remote, arbitrary, code execution
advisories | CVE-2017-8023
MD5 | d4ad7dad430064e44913f62d12c1c39a
Page 1 of 2
Back12Next

File Archive:

April 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Apr 1st
    21 Files
  • 2
    Apr 2nd
    35 Files
  • 3
    Apr 3rd
    21 Files
  • 4
    Apr 4th
    16 Files
  • 5
    Apr 5th
    15 Files
  • 6
    Apr 6th
    1 Files
  • 7
    Apr 7th
    2 Files
  • 8
    Apr 8th
    23 Files
  • 9
    Apr 9th
    19 Files
  • 10
    Apr 10th
    15 Files
  • 11
    Apr 11th
    14 Files
  • 12
    Apr 12th
    11 Files
  • 13
    Apr 13th
    2 Files
  • 14
    Apr 14th
    5 Files
  • 15
    Apr 15th
    14 Files
  • 16
    Apr 16th
    19 Files
  • 17
    Apr 17th
    19 Files
  • 18
    Apr 18th
    8 Files
  • 19
    Apr 19th
    4 Files
  • 20
    Apr 20th
    5 Files
  • 21
    Apr 21st
    1 Files
  • 22
    Apr 22nd
    0 Files
  • 23
    Apr 23rd
    0 Files
  • 24
    Apr 24th
    0 Files
  • 25
    Apr 25th
    0 Files
  • 26
    Apr 26th
    0 Files
  • 27
    Apr 27th
    0 Files
  • 28
    Apr 28th
    0 Files
  • 29
    Apr 29th
    0 Files
  • 30
    Apr 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close