exploit the possibilities
Showing 1 - 25 of 29 RSS Feed

Files Date: 2020-11-16

Gentoo Linux Security Advisory 202011-19
Posted Nov 16, 2020
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202011-19 - Multiple vulnerabilities have been found in libexif, the worst of which could result in the arbitrary execution of code. Versions less than 0.6.22_p20201105 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2020-0181, CVE-2020-0198, CVE-2020-0452
MD5 | e9115e86f8c2b55a551de5fdfa7e19be
Artworks Gallery 1.0 Shell Upload
Posted Nov 16, 2020
Authored by Shahrukh Iqbal Mirza

Artworks Gallery version 1.0 suffers from multiple remote shell upload vulnerabilities.

tags | exploit, remote, shell, vulnerability
advisories | CVE-2020-28688
MD5 | ca2142a5ef21aa8aad9aa7013aa18a0a
nfstream 6.2.3
Posted Nov 16, 2020
Authored by Zied Aouini | Site github.com

nfstream is a Python package providing fast, flexible, and expressive data structures designed to make working with online or offline network data both easy and intuitive. It aims to be the fundamental high-level building block for doing practical, real world network data analysis in Python. Additionally, it has the broader goal of becoming a common network data processing framework for researchers providing data reproducibility across experiments.

Changes: Fixed BPF filtering on live capture.
tags | tool, python
systems | unix
MD5 | e2f2db0ae80d4acbe5231939ad8351ff
Gentoo Linux Security Advisory 202011-18
Posted Nov 16, 2020
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202011-18 - Apache Ant uses various insecure temporary files possibly allowing local code execution. Versions less than 1.10.9 are affected.

tags | advisory, local, code execution
systems | linux, gentoo
advisories | CVE-2020-11979
MD5 | 7cc68dbbc5e2a4e57e20b6c2186249bb
SugarCRM 6.5.18 Cross Site Scripting
Posted Nov 16, 2020
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

SugarCRM version 6.5.18 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | d4135f7c969a3e1b816051050078c59d
Red Hat Security Advisory 2020-5112-01
Posted Nov 16, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-5112-01 - PostgreSQL is an advanced object-relational database management system. Issues addressed include an improper authorization vulnerability.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-14349, CVE-2020-14350, CVE-2020-1720
MD5 | 043f24f5b3d021076d89524eb646a5a3
Intel NUC Local Privilege Escalation
Posted Nov 16, 2020
Authored by S.AbenMassaoud | Site vulnerability-lab.com

Intel NUC suffers from a local privilege escalation vulnerability.

tags | advisory, local
MD5 | 931800d146c2676dcfdd36f0e0f77374
Red Hat Security Advisory 2020-5110-01
Posted Nov 16, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-5110-01 - PostgreSQL is an advanced object-relational database management system.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-14349, CVE-2020-14350
MD5 | 1ab7db1835d37097265c65bce19b8bba
WordPress Buddypress 6.2.0 Cross Site Scripting
Posted Nov 16, 2020
Site vulnerability-lab.com

WordPress plugin Buddypress version 6.2.0 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | 6b8cb19f133171f730bbae75605df594
Red Hat Security Advisory 2020-5111-01
Posted Nov 16, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-5111-01 - The Advanced Virtualization module provides the user-space component for running virtual machines that use KVM in environments managed by Red Hat products. Issues addressed include a double free vulnerability.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-16092, CVE-2020-25637
MD5 | 5c568060399aebfb3404542e222175d2
Froxlor 0.10.16 Cross Site Scripting
Posted Nov 16, 2020
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

Froxlor version 0.10.16 suffers from persistent cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 33ee2671638c2daf11facd68c5fa36db
AIX 5.3L /usr/sbin/lquerypv Local Root Privilege Escalation
Posted Nov 16, 2020
Authored by Hacker Fantastic

AIX version 5.3L /usr/sbin/lquerypv local root privilege escalation exploit.

tags | exploit, local, root
systems | aix
MD5 | 404c3fced5ca1174299093282bd7c407
Machosec 1.0
Posted Nov 16, 2020
Authored by cenobyte

Machosec is a script that checks the security of Mach-O 64-bit executables and application bundles for dyld injection vulnerabilities, LC_RPATH vulnerabilities leading to dyld injection, symlinks pointing to attacker controlled locations, writable by others vulnerabilities, missing stack canaries, disabled PIE (ASLR), and disabled FORTIFY_SOURCE (keeping insecure functions such as strcpy, memcpy etc.).

tags | tool, vulnerability
systems | unix
MD5 | 616de38eab130c2b3c305a77384bb705
Kaa IoT Platform 1.2.0 Cross Site Scripting
Posted Nov 16, 2020
Authored by Mufaddal Masalawala

Kaa IoT Platform version 1.2.0 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2020-26701
MD5 | 1ae0a6ea18a6e6943b02bd64558f39a7
Gentoo Linux Security Advisory 202011-17
Posted Nov 16, 2020
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202011-17 - A vulnerability in MIT Kerberos 5 could lead to a Denial of Service condition. Versions less than 1.18.2-r2 are affected.

tags | advisory, denial of service
systems | linux, gentoo
advisories | CVE-2020-28196
MD5 | 07ff40e5741943815cf2673c08be789b
Fuel CMS 1.4 Remote Code Execution
Posted Nov 16, 2020
Authored by Alexandre Zanni

Fuel CMS version 1.4 suffers from a remote code execution vulnerability.

tags | exploit, remote, code execution
advisories | CVE-2018-16763
MD5 | f88a78cccfead351aa11b3cbeccf039c
SugarCRM 6.5.18 Cross Site Scripting
Posted Nov 16, 2020
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

SugarCRM version 6.5.18 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | 174b1efde3e13dda0e63a200ae2c6980
SIGE 3.4.1 / 3.5.3 Pro Cross Site Scripting / Remote File Inclusion
Posted Nov 16, 2020
Authored by h4shur | Site vulnerability-lab.com

SIGE versions 3.4.1 and 3.5.3 Pro suffer from cross site scripting and remote file inclusion vulnerabilities.

tags | exploit, remote, vulnerability, xss, file inclusion
MD5 | 288aba0ed822e5b2856245f6549208e1
MailDepot 2033 2.3.3022 Cross Site Scripting
Posted Nov 16, 2020
Authored by Micha Borrmann, Thomas Engel | Site syss.de

MailDepot version 2033 (2.3.3022) suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2020-26554
MD5 | 1fd4f4c962bf56df0c1ae99d3b9409e2
Gentoo Linux Security Advisory 202011-16
Posted Nov 16, 2020
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202011-16 - Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution of code. Versions less than 86.0.4240.198 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2020-16013, CVE-2020-16017
MD5 | 88909a154d197ea2f9d2b4b80f7bd676
Cisco 7937G Denial Of Service / Privilege Escalation
Posted Nov 16, 2020
Authored by Cody Martin

Cisco 7937G suffers from denial of service and privilege escalation vulnerabilities.

tags | exploit, denial of service, vulnerability
systems | cisco
MD5 | f210efc45d545be62045827b6fd91890
Car Rental Management System 1.0 Shell Upload
Posted Nov 16, 2020
Authored by Mehmet Kelepce

Car Rental Management System version 1.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | c42840abea293ce3967f753e3dd1cc6a
RED-V Super Digital Signage System RXV-A740R Log Information Disclosure
Posted Nov 16, 2020
Authored by LiquidWorm | Site zeroscience.mk

RED-V Super Digital Signage System RXV-A740R is vulnerable to a sensitive information disclosure vulnerability. An unauthenticated attacker can visit several endpoints and disclose the webserver's log file list containing sensitive system resources and debug log information running on the device.

tags | exploit, info disclosure
MD5 | e1d1ea37410444110d5c4be18ea30b60
PMB 5.6 Local File Disclosure / Directory Traversal
Posted Nov 16, 2020
Authored by 41-trk

PMB version 5.6 suffers from a local file disclosure vulnerability.

tags | exploit, local, info disclosure
MD5 | 431ff9b71930385b5b2560f2e379a207
Car Rental Management System 1.0 SQL Injection
Posted Nov 16, 2020
Authored by Mehmet Kelepce

Car Rental Management System version 1.0 suffers from a remote SQL injection vulnerability. This version was already found to be susceptible to SQL injection by Fortunato Lodari in November of 2020.

tags | exploit, remote, sql injection
MD5 | defd2a54dc1a181b64dd2a0814b1a9ac
Page 1 of 2
Back12Next

File Archive:

November 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    2 Files
  • 2
    Nov 2nd
    9 Files
  • 3
    Nov 3rd
    15 Files
  • 4
    Nov 4th
    90 Files
  • 5
    Nov 5th
    22 Files
  • 6
    Nov 6th
    16 Files
  • 7
    Nov 7th
    1 Files
  • 8
    Nov 8th
    1 Files
  • 9
    Nov 9th
    40 Files
  • 10
    Nov 10th
    27 Files
  • 11
    Nov 11th
    28 Files
  • 12
    Nov 12th
    13 Files
  • 13
    Nov 13th
    18 Files
  • 14
    Nov 14th
    2 Files
  • 15
    Nov 15th
    2 Files
  • 16
    Nov 16th
    29 Files
  • 17
    Nov 17th
    15 Files
  • 18
    Nov 18th
    15 Files
  • 19
    Nov 19th
    21 Files
  • 20
    Nov 20th
    16 Files
  • 21
    Nov 21st
    1 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    19 Files
  • 24
    Nov 24th
    32 Files
  • 25
    Nov 25th
    7 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close