what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 29 RSS Feed

Files Date: 2020-11-16

Gentoo Linux Security Advisory 202011-19
Posted Nov 16, 2020
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202011-19 - Multiple vulnerabilities have been found in libexif, the worst of which could result in the arbitrary execution of code. Versions less than 0.6.22_p20201105 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2020-0181, CVE-2020-0198, CVE-2020-0452
SHA-256 | 938499afbe532d0782213795b0b110ef947cfbc3c7b099c19a15220c3a2d3428
Artworks Gallery 1.0 Shell Upload
Posted Nov 16, 2020
Authored by Shahrukh Iqbal Mirza

Artworks Gallery version 1.0 suffers from multiple remote shell upload vulnerabilities.

tags | exploit, remote, shell, vulnerability
advisories | CVE-2020-28688
SHA-256 | 05cc23392079332f733baecdf6b22052cb8e4f07f3e0a5d424bd1264ad458013
nfstream 6.2.3
Posted Nov 16, 2020
Authored by Zied Aouini | Site github.com

nfstream is a Python package providing fast, flexible, and expressive data structures designed to make working with online or offline network data both easy and intuitive. It aims to be the fundamental high-level building block for doing practical, real world network data analysis in Python. Additionally, it has the broader goal of becoming a common network data processing framework for researchers providing data reproducibility across experiments.

Changes: Fixed BPF filtering on live capture.
tags | tool, python
systems | unix
SHA-256 | fbc6a56970f3f71d3e3b40a317a26b70cea4c0fc8436228e99582978f07c251d
Gentoo Linux Security Advisory 202011-18
Posted Nov 16, 2020
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202011-18 - Apache Ant uses various insecure temporary files possibly allowing local code execution. Versions less than 1.10.9 are affected.

tags | advisory, local, code execution
systems | linux, gentoo
advisories | CVE-2020-11979
SHA-256 | ae7ebf4ed2150b9c5f51c3107b74f776bd30832ad056d03c4e2e43b4db461035
SugarCRM 6.5.18 Cross Site Scripting
Posted Nov 16, 2020
Authored by Benjamin Kunz Mejri, Vulnerability Laboratory | Site vulnerability-lab.com

SugarCRM version 6.5.18 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 73219fed971a5ec458c75e943bcbf977c3f431496cc648b5d1fca72cb4d15889
Red Hat Security Advisory 2020-5112-01
Posted Nov 16, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-5112-01 - PostgreSQL is an advanced object-relational database management system. Issues addressed include an improper authorization vulnerability.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-14349, CVE-2020-14350, CVE-2020-1720
SHA-256 | bb11a4092664279ec8b7bada321d7439800225dcfd6117bedff41204c18861e6
Intel NUC Local Privilege Escalation
Posted Nov 16, 2020
Authored by Vulnerability Laboratory, S.AbenMassaoud | Site vulnerability-lab.com

Intel NUC suffers from a local privilege escalation vulnerability.

tags | advisory, local
SHA-256 | 4515ad6e66e1783f8cb8987d1fa3313ce314d88a0e44b4586e45190847548b34
Red Hat Security Advisory 2020-5110-01
Posted Nov 16, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-5110-01 - PostgreSQL is an advanced object-relational database management system.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-14349, CVE-2020-14350
SHA-256 | d2865de5cc9cebb0175acf177f2e3e341e5eef45d94778f6f4f349f2dbf291ec
WordPress Buddypress 6.2.0 Cross Site Scripting
Posted Nov 16, 2020
Authored by Vulnerability Laboratory | Site vulnerability-lab.com

WordPress plugin Buddypress version 6.2.0 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | c3636c3b43f4f08bd6d2b1d279848cf878460bb83850058602ce2f3ecc6223c4
Red Hat Security Advisory 2020-5111-01
Posted Nov 16, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-5111-01 - The Advanced Virtualization module provides the user-space component for running virtual machines that use KVM in environments managed by Red Hat products. Issues addressed include a double free vulnerability.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-16092, CVE-2020-25637
SHA-256 | ddf74902d6bdf5ad2efc6e49771591014cbbdd9d7d0201e09855f3daa72f7f05
Froxlor 0.10.16 Cross Site Scripting
Posted Nov 16, 2020
Authored by Benjamin Kunz Mejri, Vulnerability Laboratory | Site vulnerability-lab.com

Froxlor version 0.10.16 suffers from persistent cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 2f9886a105116c301e9a7e4b4596cfc35de95fb04807e3f0ea620414f3439677
AIX 5.3L /usr/sbin/lquerypv Local Root Privilege Escalation
Posted Nov 16, 2020
Authored by Hacker Fantastic

AIX version 5.3L /usr/sbin/lquerypv local root privilege escalation exploit.

tags | exploit, local, root
systems | aix
SHA-256 | 0897775bf394074a0899890bf9b6b3c6e0a4fdb790821736714ba4384b53bd9c
Machosec 1.0
Posted Nov 16, 2020
Authored by cenobyte

Machosec is a script that checks the security of Mach-O 64-bit executables and application bundles for dyld injection vulnerabilities, LC_RPATH vulnerabilities leading to dyld injection, symlinks pointing to attacker controlled locations, writable by others vulnerabilities, missing stack canaries, disabled PIE (ASLR), and disabled FORTIFY_SOURCE (keeping insecure functions such as strcpy, memcpy etc.).

tags | tool, vulnerability
systems | unix
SHA-256 | 70ca6a3df8488e0268a0db7c2449c2bc9eb3212694506ee5ada98c1deea6a708
Kaa IoT Platform 1.2.0 Cross Site Scripting
Posted Nov 16, 2020
Authored by Mufaddal Masalawala

Kaa IoT Platform version 1.2.0 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2020-26701
SHA-256 | baabed0268ed003076986e3c52fa3b1f3fc51922c6e853897cbc95dde091bc5a
Gentoo Linux Security Advisory 202011-17
Posted Nov 16, 2020
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202011-17 - A vulnerability in MIT Kerberos 5 could lead to a Denial of Service condition. Versions less than 1.18.2-r2 are affected.

tags | advisory, denial of service
systems | linux, gentoo
advisories | CVE-2020-28196
SHA-256 | 18afd5f226c2deff09603d3534c28e367df369676dffb5fb7f0dd0ede4fafea6
Fuel CMS 1.4 Remote Code Execution
Posted Nov 16, 2020
Authored by Alexandre Zanni

Fuel CMS version 1.4 suffers from a remote code execution vulnerability.

tags | exploit, remote, code execution
advisories | CVE-2018-16763
SHA-256 | 291fe5bb50db9c427fe22ed5bc2893e3d0b8edcccce7f8c12d6f4f5035056f37
SugarCRM 6.5.18 Cross Site Scripting
Posted Nov 16, 2020
Authored by Benjamin Kunz Mejri, Vulnerability Laboratory | Site vulnerability-lab.com

SugarCRM version 6.5.18 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 0798563b5a3ae3ca51c0af6069c5c026f1ce326e5026603dedf29d24602a7732
SIGE 3.4.1 / 3.5.3 Pro Cross Site Scripting / Remote File Inclusion
Posted Nov 16, 2020
Authored by Vulnerability Laboratory, h4shur | Site vulnerability-lab.com

SIGE versions 3.4.1 and 3.5.3 Pro suffer from cross site scripting and remote file inclusion vulnerabilities.

tags | exploit, remote, vulnerability, xss, file inclusion
SHA-256 | 5265804569866a12a9641ca1a815352cb45dd364d43c7a6445548094e751f265
MailDepot 2033 2.3.3022 Cross Site Scripting
Posted Nov 16, 2020
Authored by Micha Borrmann, Thomas Engel | Site syss.de

MailDepot version 2033 (2.3.3022) suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2020-26554
SHA-256 | f82776b6e406fc3d421c55e64c73955573843831dc5dcd361b30f289b3c99402
Gentoo Linux Security Advisory 202011-16
Posted Nov 16, 2020
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202011-16 - Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution of code. Versions less than 86.0.4240.198 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2020-16013, CVE-2020-16017
SHA-256 | 9522426a5de91a3713cbbdc2a4cf52b185bc2a85694b662c84e38ec5ccf5b393
Cisco 7937G Denial Of Service / Privilege Escalation
Posted Nov 16, 2020
Authored by Cody Martin

Cisco 7937G suffers from denial of service and privilege escalation vulnerabilities.

tags | exploit, denial of service, vulnerability
systems | cisco
SHA-256 | 1a85b1824e9e138ebbade8a3b9f4aa8efdff5e15d8a48bb3135fca92e2eff047
Car Rental Management System 1.0 Shell Upload
Posted Nov 16, 2020
Authored by Mehmet Kelepce

Car Rental Management System version 1.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
SHA-256 | ea1955bf4e554af26932143481fcd5de176399779008faaf30af89bbaeadecd3
RED-V Super Digital Signage System RXV-A740R Log Information Disclosure
Posted Nov 16, 2020
Authored by LiquidWorm | Site zeroscience.mk

RED-V Super Digital Signage System RXV-A740R is vulnerable to a sensitive information disclosure vulnerability. An unauthenticated attacker can visit several endpoints and disclose the webserver's log file list containing sensitive system resources and debug log information running on the device.

tags | exploit, info disclosure
SHA-256 | de09419a6625a08c5c653a4a0158f007d4e91c9ab31e72409a37bc77843119de
PMB 5.6 Local File Disclosure / Directory Traversal
Posted Nov 16, 2020
Authored by 41-trk

PMB version 5.6 suffers from a local file disclosure vulnerability.

tags | exploit, local, info disclosure
SHA-256 | c2eaf557d483dd562839fae773eab52db661bcf646193e6dd36a63ea9523ffc3
Car Rental Management System 1.0 SQL Injection
Posted Nov 16, 2020
Authored by Mehmet Kelepce

Car Rental Management System version 1.0 suffers from a remote SQL injection vulnerability. This version was already found to be susceptible to SQL injection by Fortunato Lodari in November of 2020.

tags | exploit, remote, sql injection
SHA-256 | a6abf5b2f08e07b0e8510f422537cf0f47e9b4f279510b88d961160fe1bc1363
Page 1 of 2
Back12Next

File Archive:

July 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    52 Files
  • 2
    Jul 2nd
    0 Files
  • 3
    Jul 3rd
    0 Files
  • 4
    Jul 4th
    11 Files
  • 5
    Jul 5th
    8 Files
  • 6
    Jul 6th
    8 Files
  • 7
    Jul 7th
    0 Files
  • 8
    Jul 8th
    0 Files
  • 9
    Jul 9th
    0 Files
  • 10
    Jul 10th
    0 Files
  • 11
    Jul 11th
    0 Files
  • 12
    Jul 12th
    0 Files
  • 13
    Jul 13th
    0 Files
  • 14
    Jul 14th
    0 Files
  • 15
    Jul 15th
    0 Files
  • 16
    Jul 16th
    0 Files
  • 17
    Jul 17th
    0 Files
  • 18
    Jul 18th
    0 Files
  • 19
    Jul 19th
    0 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close