what you don't know can hurt you
Showing 1 - 25 of 33 RSS Feed

Files Date: 2020-12-02

I2P 0.9.48
Posted Dec 2, 2020
Authored by welterde | Site i2p2.de

I2P is an anonymizing network, offering a simple layer that identity-sensitive applications can use to securely communicate. All data is wrapped with several layers of encryption, and the network is both distributed and dynamic, with no trusted parties. This is the source code release version.

Changes: Various updates.
tags | tool
systems | unix
MD5 | 71ad797795c3b30385f4ecd522a5aee2
Red Hat Security Advisory 2020-5325-01
Posted Dec 2, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-5325-01 - Red Hat Ceph Storage is a scalable, open, software-defined storage platform that combines the most stable version of the Ceph storage system with a Ceph management platform, deployment utilities, and support services.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-25660
MD5 | 920c159c07f49b4832f5d4b187ce1298
Ubuntu Security Notice USN-4659-1
Posted Dec 2, 2020
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4659-1 - It was discovered that a race condition existed in the binder IPC implementation in the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Daniele Antonioli, Nils Ole Tippenhauer, and Kasper Rasmussen discovered that legacy pairing and secure-connections pairing authentication in the Bluetooth protocol could allow an unauthenticated user to complete authentication without pairing credentials via adjacent access. A physically proximate attacker could use this to impersonate a previously paired Bluetooth device. Various other issues were also addressed.

tags | advisory, denial of service, arbitrary, kernel, local, protocol
systems | linux, ubuntu
advisories | CVE-2020-0423, CVE-2020-10135, CVE-2020-14351, CVE-2020-25705, CVE-2020-27152, CVE-2020-28915, CVE-2020-4788
MD5 | 37ee7c1e29761f04f52a270e013cd6ed
Ksix Zigbee Devices Playback Protection Bypass
Posted Dec 2, 2020
Authored by Alejandro Vazquez Vazquez

Ksix Zigbee devices playback protection bypass proof of concept exploit.

tags | exploit, proof of concept
MD5 | 41f7257a6105964113f8a7d53ee997b8
Ubuntu Security Notice USN-4658-1
Posted Dec 2, 2020
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4658-1 - It was discovered that a race condition existed in the binder IPC implementation in the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Daniele Antonioli, Nils Ole Tippenhauer, and Kasper Rasmussen discovered that legacy pairing and secure-connections pairing authentication in the Bluetooth protocol could allow an unauthenticated user to complete authentication without pairing credentials via adjacent access. A physically proximate attacker could use this to impersonate a previously paired Bluetooth device. Various other issues were also addressed.

tags | advisory, denial of service, arbitrary, kernel, local, protocol
systems | linux, ubuntu
advisories | CVE-2020-0423, CVE-2020-10135, CVE-2020-14351, CVE-2020-14390, CVE-2020-25211, CVE-2020-25284, CVE-2020-25643, CVE-2020-25645, CVE-2020-25705, CVE-2020-28915, CVE-2020-4788
MD5 | 172e17181d7ddc7028474879ff713778
Simple College Website 1.0 Local File Inclusion
Posted Dec 2, 2020
Authored by mosaaed

Simple College Website version 1.0 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
MD5 | 86b49885d775e8eb45bc78ef1e69613a
Red Hat Security Advisory 2020-5317-01
Posted Dec 2, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-5317-01 - PostgreSQL is an advanced object-relational database management system.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-25694, CVE-2020-25695, CVE-2020-25696
MD5 | 9129522e076eb0c15f4cbd2821469a48
Car Rental Management System 1.0 Local File Inclusion / SQL Injection
Posted Dec 2, 2020
Authored by mosaaed

Car Rental Management System version 1.0 suffers from local file inclusion and remote SQL injection vulnerabilities.

tags | exploit, remote, local, vulnerability, sql injection, file inclusion
MD5 | 3a68203e8a08bc0b1358a7badb0e67c3
Red Hat Security Advisory 2020-5316-01
Posted Dec 2, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-5316-01 - PostgreSQL is an advanced object-relational database management system.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-25694, CVE-2020-25695, CVE-2020-25696
MD5 | 44d847c5171afa77af946f357a1b4676
WordPress WP-FileManager 6.8 Remote Code Execution
Posted Dec 2, 2020
Authored by Mansoor R

WordPress WP-FileManager plugin version 6.8 remote code execution exploit.

tags | exploit, remote, code execution
MD5 | 384a5f15dbfddc6058b64fdb42bd1ce1
ChurchCRM 4.2.1 Cross Site Scripting
Posted Dec 2, 2020
Authored by Mufaddal Masalawala

ChurchCRM version 4.2.1 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | 6b89f16ad8ec880867569b93690fe6bc
ChurchCRM 4.2.0 CSV Injection
Posted Dec 2, 2020
Authored by Mufaddal Masalawala

ChurchCRM version 4.2.0 suffers from a CSV formula injection vulnerability.

tags | exploit
MD5 | ae19b34ecca490794dfd025e291d3bbd
Online Voting System Project In PHP Cross Site Scripting
Posted Dec 2, 2020
Authored by Sagar Banwa

Online Voting System Project in PHP suffers from a persistent cross site scripting vulnerability.

tags | exploit, php, xss
MD5 | 89b15c6e9643f5e189ef4b32f2c59242
NewsLister Cross Site Scripting
Posted Dec 2, 2020
Authored by Emre Aslan

NewsLister suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | d5ffd96f0461acf035a65c34679625dc
EgavilanMedia User Registration And Login System With Admin Panel 1.0 XSS
Posted Dec 2, 2020
Authored by Soushikta Chowdhury

EgavilanMedia User Registration and Login System with Admin Panel version 1.0 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | e070c95b3b4d46c523e747c6422ef8fd
DotCMS 20.11 Cross Site Scripting
Posted Dec 2, 2020
Authored by Hardik Solanki

DotCMS version 20.11 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | 2726d6fd5df36dab9bf5d75f20ad865c
Local Service Search Engine Management System 1.0 SQL Injection
Posted Dec 2, 2020
Authored by Aditya Wakhlu

Local Service Search Engine Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, local, sql injection
MD5 | 873806f84867ac817a077cd41f7f195e
Online News Portal System 1.0 Cross Site Scripting
Posted Dec 2, 2020
Authored by Parshwa Bhavsar

Online News Portal System version 1.0 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | bceb3b420fb0ea0f7d944ffdbc239e56
Bakeshop Online Ordering System 1.0 Cross Site Scripting
Posted Dec 2, 2020
Authored by Parshwa Bhavsar

Bakeshop Online Ordering System version 1.0 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | e989b585025461e0204e3cc0f02a085e
PRTG Network Monitor 20.4.63.1412 Cross Site Scripting
Posted Dec 2, 2020
Authored by Amin Rawah

PRTG Network Monitor version 20.4.63.1412 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2020-14073
MD5 | 930892d1f0a66210a1b7e4aad203b256
WonderCMS 3.1.3 Remote Code Execution
Posted Dec 2, 2020
Authored by zetc0de

WonderCMS version 3.1.3 suffers from an authenticated remote code execution vulnerability.

tags | exploit, remote, code execution
MD5 | b444e794ada92a9ef2f96a93a0bbc90c
WonderCMS 3.1.3 Code Execution / Server-Side Request Forgery
Posted Dec 2, 2020
Authored by zetc0de

WonderCMS version 3.1.3 suffers from an authenticated server-side request forgery vulnerability that allows for remote code execution.

tags | exploit, remote, code execution
MD5 | 693838d6867777ecd7efd98f273c1c06
Pharmacy Store Management System 1.0 SQL Injection
Posted Dec 2, 2020
Authored by Aydin Baran Ertemir

Pharmacy Store Management System version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 46f89cdd676d680662acbdbe754a5280
ILIAS Learning Management System 4.3 Server-Side Request Forgery
Posted Dec 2, 2020
Authored by Dot, kx1z0

ILIAS Learning Management System version 4.3 suffers from a server-side request forgery vulnerability.

tags | exploit
MD5 | eda4cca48f8eb6ed4c3c04597d84bbb9
Student Result Management System 1.0 SQL Injection
Posted Dec 2, 2020
Authored by Ritesh Gohil

Student Result Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
MD5 | 1a86316cc96c548e88966de080d1139f
Page 1 of 2
Back12Next

File Archive:

January 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jan 1st
    4 Files
  • 2
    Jan 2nd
    3 Files
  • 3
    Jan 3rd
    3 Files
  • 4
    Jan 4th
    33 Files
  • 5
    Jan 5th
    31 Files
  • 6
    Jan 6th
    21 Files
  • 7
    Jan 7th
    15 Files
  • 8
    Jan 8th
    19 Files
  • 9
    Jan 9th
    1 Files
  • 10
    Jan 10th
    1 Files
  • 11
    Jan 11th
    33 Files
  • 12
    Jan 12th
    19 Files
  • 13
    Jan 13th
    27 Files
  • 14
    Jan 14th
    8 Files
  • 15
    Jan 15th
    16 Files
  • 16
    Jan 16th
    0 Files
  • 17
    Jan 17th
    0 Files
  • 18
    Jan 18th
    0 Files
  • 19
    Jan 19th
    0 Files
  • 20
    Jan 20th
    0 Files
  • 21
    Jan 21st
    0 Files
  • 22
    Jan 22nd
    0 Files
  • 23
    Jan 23rd
    0 Files
  • 24
    Jan 24th
    0 Files
  • 25
    Jan 25th
    0 Files
  • 26
    Jan 26th
    0 Files
  • 27
    Jan 27th
    0 Files
  • 28
    Jan 28th
    0 Files
  • 29
    Jan 29th
    0 Files
  • 30
    Jan 30th
    0 Files
  • 31
    Jan 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close