exploit the possibilities
Showing 1 - 25 of 27 RSS Feed

Files Date: 2020-10-19

Microsoft SharePoint SSI / ViewState Remote Code Execution
Posted Oct 19, 2020
Authored by mr_me, wvu | Site metasploit.com

This Metasploit module exploits a server-side include (SSI) in SharePoint to leak the web.config file and forge a malicious ViewState with the extracted validation key. This exploit is authenticated and requires a user with page creation privileges, which is a standard permission in SharePoint. The web.config file will be stored in loot once retrieved, and the VALIDATION_KEY option can be set to short-circuit the SSI and trigger the ViewState deserialization.

tags | exploit, web
advisories | CVE-2020-16952
MD5 | a5350820d850daaac2cdc5db70533321
Chrome USB::OnServiceConnectionError Use-After-Free
Posted Oct 19, 2020
Authored by Google Security Research, Glazvunov

Chrome suffers from a use-after-free vulnerability in USB::OnServiceConnectionError.

tags | exploit
advisories | CVE-2020-6541
MD5 | 5edb5820b7d1b2c0f59e318c98fb4d0b
Chrome WebIDBGetDBNamesCallbacksImpl::SuccessNamesAndVersionsList Use-After-Free
Posted Oct 19, 2020
Authored by Google Security Research, Glazvunov

Chrome suffers from a use-after-free vulnerability in WebIDBGetDBNamesCallbacksImpl::SuccessNamesAndVersionsList.

tags | exploit
advisories | CVE-2020-6550
MD5 | 411e2d70af0ac966392cea6e525962e3
Mocha For Android Audio Interception
Posted Oct 19, 2020
Authored by Google Security Research, natashenka

Mocha for Android suffers from an issue where a call can cause the callee device to send audio without user interaction.

tags | exploit
MD5 | 772edab5551c467389bb2fea0c6d8a2f
ReQuest Serious Play F3 Media Server 7.0.3 Unauthenticated Remote Code Execution
Posted Oct 19, 2020
Authored by LiquidWorm | Site zeroscience.mk

ReQuest Serious Play F3 Media Server version 7.0.3 suffers from an unauthenticated remote code execution vulnerability. Abusing the hidden ReQuest Internal Utilities page (/tools) from the services provided, an attacker can exploit the Quick File Uploader (/tools/upload.html) page and upload PHP executable files that results in remote code execution as the web server user.

tags | exploit, remote, web, php, code execution, file upload
MD5 | 27df19dca8c37dc3db671041baa681bf
FRITZ!Box 7.20 DNS Rebinding Protection Bypass
Posted Oct 19, 2020
Site redteam-pentesting.de

FRITZ!Box versions 7.20 and below suffer from a DNS rebinding protection bypass vulnerability.

tags | exploit, bypass
advisories | CVE-2020-26887
MD5 | 186c55ac79da4710d89f6b2584b3e73a
HiSilicon Video Encoder Buffer Overflow / Denial Of Service
Posted Oct 19, 2020
Authored by Alexei Kojenov

HiSilicon Video Encoder suffers from an unauthenticated RTSP buffer overflow vulnerability that can cause a denial of service condition.

tags | exploit, denial of service, overflow
advisories | CVE-2020-24214
MD5 | e8f8f7a51674f092ca534371f879a304
Red Hat Security Advisory 2020-4274-01
Posted Oct 19, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-4274-01 - The Apache Commons Collections library provides new interfaces, implementations, and utilities to extend the features of the Java Collections Framework. Issues addressed include a code execution vulnerability.

tags | advisory, java, code execution
systems | linux, redhat
advisories | CVE-2015-7501
MD5 | 8773f9cb63de12ce14a4bc1a09189db1
Jenkins 2.63 Sandbox Bypass
Posted Oct 19, 2020
Authored by dmw0ng

Jenkins version 2.63 suffers from a sandbox bypass vulnerability.

tags | exploit, bypass
advisories | CVE-2019-1003030
MD5 | e07905721f87c46d4e272fc3d6fd7cba
ReQuest Serious Play F3 Media Server 7.0.3 Denial Of Service
Posted Oct 19, 2020
Authored by LiquidWorm | Site zeroscience.mk

ReQuest Serious Play F3 Media Server version 7.0.3 suffers from a denial of service vulnerability. The device can be shutdown or rebooted by an unauthenticated attacker when issuing one HTTP GET request.

tags | exploit, web, denial of service
MD5 | 7e4935c15e1a6e632932f0aa3b9ab22a
HiSilicon Video Encoder Backdoor Password
Posted Oct 19, 2020
Authored by Alexei Kojenov

HiSilicon Video Encoder allows for full administrative access via a backdoor password. Versions affected are vendor specific.

tags | exploit
advisories | CVE-2020-24215
MD5 | db3b44cbd9379b17c332b6aacec48e35
Red Hat Security Advisory 2020-4272-01
Posted Oct 19, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-4272-01 - Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Issues addressed include HTTP request smuggling and buffer overflow vulnerabilities.

tags | advisory, web, overflow, javascript, vulnerability
systems | linux, redhat
advisories | CVE-2020-15095, CVE-2020-8116, CVE-2020-8201, CVE-2020-8252
MD5 | 9c2d598b781a24820a7e85bd36363170
HiSilicon Video Encoder Malicious Firmware Code Execution
Posted Oct 19, 2020
Authored by Alexei Kojenov

HiSilicon Video Encoder suffers from a remote code execution vulnerability via an unauthenticated upload of malicious firmware. Versions affected are vendor specific.

tags | exploit, remote, code execution
advisories | CVE-2020-24217
MD5 | fb0734a3ffef68b6b5ea982d4b944b8c
ReQuest Serious Play F3 Media Server 7.0.3 Debug Log Disclosure
Posted Oct 19, 2020
Authored by LiquidWorm | Site zeroscience.mk

ReQuest Serious Play F3 Media Server version 7.0.3 suffers from a debug log disclosure vulnerability. An unauthenticated attacker can visit the message_log page and disclose the webserver's Python debug log file containing system information, credentials, paths, processes and command arguments running on the device.

tags | exploit, python
MD5 | 0b0576d8b889a02c9607020a2a342a98
HiSilicon Video Encoder Command Injection
Posted Oct 19, 2020
Authored by Alexei Kojenov

HiSilicon Video Encoder suffers from a remote command injection vulnerability. Versions affected are vendor specific.

tags | exploit, remote
advisories | CVE-2020-24217
MD5 | c8f693a6270fba4d7d7d538abe23ea48
ReQuest Serious Play Media Player 3.0 File Disclosure / Path Traversal
Posted Oct 19, 2020
Authored by LiquidWorm | Site zeroscience.mk

ReQuest Serious Play Media Player version 3.0 suffers from an unauthenticated file disclosure vulnerability when input passed through the file parameter in tail.html and file.html script is not properly verified before being used to read web log files. This can be exploited to disclose contents of files from local resources.

tags | exploit, web, local
MD5 | 89e3f397315931eb686bb1c49abbbdca
HiSilicon Video Encoder 1.97 File Disclosure / Path Traversal
Posted Oct 19, 2020
Authored by Alexei Kojenov

HiSilicon Video Encoder versions up to 1.97 suffer from a path traversal vulnerability that allows for file disclosure.

tags | exploit, file inclusion
advisories | CVE-2020-24219
MD5 | cb4c6c75d9547eef7af977b49adf00a6
Chrome XRSystem::FocusedFrameChanged and FocusController::NotifyFocusChangedObservers Use-After-Free
Posted Oct 19, 2020
Authored by Google Security Research, Glazvunov

Chrome suffers from a use-after-free vulnerability in XRSystem::FocusedFrameChanged and FocusController::NotifyFocusChangedObservers.

tags | exploit
advisories | CVE-2020-6551
MD5 | 62c2c4c58b3d2bdb3596a004e37edb33
TinyMCE 5 HTML Injection
Posted Oct 19, 2020
Authored by Vincent666 ibn Winnie

TinyMCE 5 suffers from an html injection vulnerability.

tags | exploit
MD5 | db96a6d696ca571cea80c3938213806e
Online Job Portal 1.0 Cross Site Scripting
Posted Oct 19, 2020
Authored by Akiner Kisa

Online Job Portal version 1.0 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | d6642d1a84f86dc55e84952272e0564a
OX App Suite / OX Documents 7.10.3 XSS / Server-Side Request Forgery
Posted Oct 19, 2020
Authored by Martin Heiland, Zeeshan Khalid, Sreejith Krishnan R, MOGWAI LABS, notoriousrip

OX App Suite and OX Documents versions 7.10.3 and some prior versions suffer from information exposure, server-side request forgery, and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2020-15002, CVE-2020-15003, CVE-2020-15004
MD5 | a516b6243bb0f374586eb83076157208
Online Discussion Forum Site 1.0 Cross Site Scripting
Posted Oct 19, 2020
Authored by j5oh

Online Discussion Forum Site version 1.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 096903b7ac6e156a0d6b43a65e519eb6
Online Student's Management System 1.0 Shell Upload
Posted Oct 19, 2020
Authored by Akiner Kisa

Online Student's Management System version 1.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | d8d317865accc39f0ea9c31f5b1c18ab
QRadar RemoteJavaScript Deserialization
Posted Oct 19, 2020
Authored by Securify B.V.

A Java deserialization vulnerability exists in the QRadar RemoteJavaScript Servlet. An authenticated user can call one of the vulnerable methods and cause the Servlet to deserialize arbitrary objects. An attacker can exploit this vulnerability by creating a specially crafted (serialized) object, which amongst other things can result in a denial of service, change of system settings, or execution of arbitrary code. This issue was successfully verified on QRadar Community Edition version 7.3.1.6 (7.3.1 Build 20180723171558).

tags | exploit, java, denial of service, arbitrary
advisories | CVE-2020-4280
MD5 | a463b8b79e96cf68c6dcd5ec759ee016
Nagios XI 5.7.3 SQL Injection
Posted Oct 19, 2020
Authored by Matthew Aberegg

Nagios XI version 5.7.3 suffers from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
MD5 | 01febd1da2bfd95f219977a57c5aea72
Page 1 of 2
Back12Next

File Archive:

December 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    22 Files
  • 2
    Dec 2nd
    33 Files
  • 3
    Dec 3rd
    16 Files
  • 4
    Dec 4th
    22 Files
  • 5
    Dec 5th
    0 Files
  • 6
    Dec 6th
    0 Files
  • 7
    Dec 7th
    0 Files
  • 8
    Dec 8th
    0 Files
  • 9
    Dec 9th
    0 Files
  • 10
    Dec 10th
    0 Files
  • 11
    Dec 11th
    0 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close