what you don't know can hurt you
Showing 1 - 25 of 32 RSS Feed

Files Date: 2021-05-06

Red Hat Security Advisory 2021-1515-01
Posted May 6, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-1515-01 - Openshift Logging Bug Fix Release. Issues addressed include code execution, denial of service, and deserialization vulnerabilities.

tags | advisory, denial of service, vulnerability, code execution
systems | linux, redhat
advisories | CVE-2018-14718, CVE-2018-14719, CVE-2018-14720, CVE-2018-14721, CVE-2018-19360, CVE-2018-19361, CVE-2018-19362, CVE-2019-14379, CVE-2020-15586, CVE-2020-16845, CVE-2020-24750, CVE-2020-35490, CVE-2020-35491, CVE-2020-35728, CVE-2020-36179, CVE-2020-36180, CVE-2020-36181, CVE-2020-36182, CVE-2020-36183, CVE-2020-36184, CVE-2020-36185, CVE-2020-36186, CVE-2020-36187, CVE-2020-36188, CVE-2020-36189, CVE-2021-20190
MD5 | 4a8801f122d4f1ab719b39115fcdbc70
Ubuntu Security Notice USN-4938-1
Posted May 6, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4938-1 - It was discovered that Unbound contained multiple security issues. A remote attacker could possibly use these issues to cause a denial of service, inject arbitrary commands, execute arbitrary code, and overwrite local files.

tags | advisory, remote, denial of service, arbitrary, local
systems | linux, ubuntu
advisories | CVE-2019-25031, CVE-2019-25035, CVE-2019-25039, CVE-2020-28935
MD5 | 7cbc6ff7f46d7928484a4e834e459fb3
Ubuntu Security Notice USN-4936-1
Posted May 6, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4936-1 - Multiple security issues were discovered in Thunderbird. If a user were tricked into opening a specially crafted website in a browsing context, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information, or execute arbitrary code. It was discovered that Thunderbird may keep key material in memory in some circumstances. A local attacker could potentially exploit this to obtain private keys. Various other issues were also addressed.

tags | advisory, denial of service, arbitrary, local
systems | linux, ubuntu
advisories | CVE-2021-23968, CVE-2021-23969, CVE-2021-23973, CVE-2021-29950
MD5 | 6267c7c4cad00ab2f62f75f37a6613c0
Red Hat Security Advisory 2021-1511-01
Posted May 6, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-1511-01 - Red Hat AMQ Clients enable connecting, sending, and receiving messages over the AMQP 1.0 wire transport protocol to or from AMQ Broker 6 and 7. This update provides various bug fixes and enhancements in addition to the client package versions previously released on Red Hat Enterprise Linux 7 and 8. Issues addressed include an information leakage vulnerability.

tags | advisory, protocol
systems | linux, redhat
advisories | CVE-2021-21290, CVE-2021-21295, CVE-2021-21409
MD5 | d54bd1a07e7fb30b5ef92d6976dcf254
b2evolution 7-2-2 SQL Injection
Posted May 6, 2021
Authored by nu11secur1ty

b2evolution version 7-2-2 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2021-28242
MD5 | 1ced09b619490337be3ea86e23221667
WordPress WP Super Edit 2.5.4 Arbitrary File Upload
Posted May 6, 2021
Authored by h4shur

WordPress WP Super Edit plugin version 2.5.4 suffers from an arbitrary file upload vulnerability.

tags | exploit, arbitrary, file upload
MD5 | 40b02ffb098a5c31c187c21257fe02c9
Red Hat Security Advisory 2021-1512-01
Posted May 6, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-1512-01 - PostgreSQL is an advanced object-relational database management system.

tags | advisory
systems | linux, redhat
advisories | CVE-2019-10208, CVE-2020-25694, CVE-2020-25695
MD5 | dcbeea14b1a44a2dff2d69971393378d
Ubuntu Security Notice USN-4937-1
Posted May 6, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4937-1 - Ondrej Holy discovered that GNOME Autoar could extract files outside of the intended directory. If a user were tricked into extracting a specially crafted archive, a remote attacker could create files in arbitrary locations, possibly leading to code execution.

tags | advisory, remote, arbitrary, code execution
systems | linux, ubuntu
advisories | CVE-2021-28650
MD5 | 1ce6ba4e9126d4f4a6fd550fa9b85f39
Schlix CMS 2.2.6-6 Remote Code Execution
Posted May 6, 2021
Authored by Eren Sarac

Schlix CMS version 2.2.6-6 suffers from a remote code execution vulnerability.

tags | exploit, remote, code execution
MD5 | 452f6ea7f2b3d9d995035faed8e27e68
Schlix CMS 2.2.6-6 Cross Site Scripting
Posted May 6, 2021
Authored by Emircan Bas

Schlix CMS version 2.2.6-6 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | d08bfc65b93de383007d75451b606261
Pass The Hash - Lateral Movement
Posted May 6, 2021
Authored by Jeenali Kothari | Site hackingarticles.in

This whitepaper discusses Pass The Hash attacks as well as the tooling needed to perform the attacks.

tags | paper
MD5 | 648083f837d1d468db9f436ed86a00d5
Ubuntu Security Notice USN-4934-2
Posted May 6, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4934-2 - USN-4934-1 fixed several vulnerabilities in Exim. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. CVE-2020-28026 only affected Ubuntu 16.04 ESM. It was discovered that Exim contained multiple security issues. An attacker could use these issues to cause a denial of service, execute arbitrary code remotely, obtain sensitive information, or escalate local privileges. Various other issues were also addressed.

tags | advisory, denial of service, arbitrary, local, vulnerability
systems | linux, ubuntu
advisories | CVE-2020-28007, CVE-2020-28012, CVE-2020-28016, CVE-2020-28024, CVE-2020-28026
MD5 | d1328f444212f331072a69abfd628772
jSQL Injection 0.85
Posted May 6, 2021
Authored by ron190 | Site github.com

jSQL Injection is a lightweight application used to find database information from a distant server. jSQL Injection is also part of the official penetration testing distribution Kali Linux and is included in various other distributions like Pentest Box, Parrot Security OS, ArchStrike and BlackArch Linux. This is the source code release.

Changes: Compliance to Java 17. Switched to native HttpClient.
tags | tool, scanner, sql injection
systems | linux, unix
MD5 | d6a21f297789ddb400c5d81f48b8bf81
Red Hat Security Advisory 2021-1509-01
Posted May 6, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-1509-01 - Jetty is a 100% Java HTTP Server and Servlet Container. Issues addressed include a resource exhaustion vulnerability.

tags | advisory, java, web
systems | linux, redhat
advisories | CVE-2021-28163, CVE-2021-28164, CVE-2021-28165
MD5 | c51577078065e34bc77063a1acd2d3f7
Red Hat Security Advisory 2021-1429-01
Posted May 6, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-1429-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. Issues addressed include an XML injection vulnerability.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-25649, CVE-2021-20305, CVE-2021-2163, CVE-2021-27363, CVE-2021-27364, CVE-2021-27365, CVE-2021-3347, CVE-2021-3447
MD5 | 25c9b72c858aed26197391187cf2d3ee
Red Hat Security Advisory 2021-1499-01
Posted May 6, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-1499-01 - Red Hat Advanced Cluster Management for Kubernetes 2.2.3 images Red Hat Advanced Cluster Management for Kubernetes provides the capabilities to address common challenges that administrators and site reliability engineers face as they work across a range of public and private cloud environments. Clusters and applications are all visible and managed from a single console—with security policy built in. Issues addressed include code execution and denial of service vulnerabilities.

tags | advisory, denial of service, vulnerability, code execution
systems | linux, redhat
advisories | CVE-2020-28469, CVE-2021-20305, CVE-2021-23358, CVE-2021-28092, CVE-2021-28918, CVE-2021-29418
MD5 | 9fa6e15f10dd357f27055d0ae74fa8b8
Red Hat Security Advisory 2021-1366-01
Posted May 6, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-1366-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.7.9. Issues addressed include a denial of service vulnerability.

tags | advisory, denial of service
systems | linux, redhat
advisories | CVE-2020-15586, CVE-2020-16845, CVE-2020-28362, CVE-2021-3114
MD5 | 4c4ad2721fc0bba65a11694114928ab8
Gentoo Linux Security Advisory 202105-01
Posted May 6, 2021
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202105-1 - Multiple vulnerabilities have been found in Exim, the worst of which allows remote attackers to execute arbitrary code. Versions less than 4.94.2 are affected.

tags | advisory, remote, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2020-28007, CVE-2020-28008, CVE-2020-28009, CVE-2020-28010, CVE-2020-28011, CVE-2020-28012, CVE-2020-28013, CVE-2020-28014, CVE-2020-28015, CVE-2020-28016, CVE-2020-28017, CVE-2020-28018, CVE-2020-28019, CVE-2020-28020, CVE-2020-28021, CVE-2020-28022, CVE-2020-28023, CVE-2020-28024, CVE-2020-28025, CVE-2020-28026, CVE-2021-27216
MD5 | da94160a96c36f5898c3c1f367a22ddd
Xmind 2020 Cross Site Scripting / Code Execution
Posted May 6, 2021
Authored by Taurus Omar

Xmind version 2020 suffers from a cross site scripting vulnerability that can lead to remote code execution.

tags | exploit, remote, code execution, xss
MD5 | 0aa58c11da5078309f0298413b4b6af0
Tagstoo 2.0.1 Cross Site Scripting / Code Execution
Posted May 6, 2021
Authored by Taurus Omar

Tagstoo version 2.0.1 suffers from a cross site scripting vulnerability that can lead to remote code execution.

tags | exploit, remote, code execution, xss
MD5 | e4b6ab6f7999504181314036d2b0450f
Marky 0.0.1 Cross Site Scripting / Code Execution
Posted May 6, 2021
Authored by Taurus Omar

Marky version 0.0.1 suffers from a cross site scripting vulnerability that can lead to remote code execution.

tags | exploit, remote, code execution, xss
MD5 | 74707d766ab19b04932b9237c3a6d5d3
StudyMD 0.3.2 Cross Site Scripting / Code Execution
Posted May 6, 2021
Authored by Taurus Omar

StudyMD version 0.3.2 suffers from a cross site scripting vulnerability that can lead to remote code execution.

tags | exploit, remote, code execution, xss
MD5 | cbfd49b77368fa80f642c26d16b25bd9
SnipCommand 0.1.0 Cross Site Scripting / Code Execution
Posted May 6, 2021
Authored by Taurus Omar

SnipCommand version 0.1.0 suffers from a cross site scripting vulnerability that can lead to remote code execution.

tags | exploit, remote, code execution, xss
MD5 | 34dc1fa9d8c9fea6965bfb141eda50dc
Moeditor 0.2.0 Cross Site Scripting / Code Execution
Posted May 6, 2021
Authored by Taurus Omar

Moeditor version 0.2.0 suffers from a cross site scripting vulnerability that can lead to remote code execution.

tags | exploit, remote, code execution, xss
MD5 | b0c0438485c278a52b8c28165066b879
Markdownify 1.2.0 Cross Site Scripting / Code Execution
Posted May 6, 2021
Authored by Taurus Omar

Markdownify version 1.2.0 suffers from a cross site scripting vulnerability that can lead to remote code execution.

tags | exploit, remote, code execution, xss
MD5 | 272e2be2bcd3f56bdee0ae91eeb7f6fc
Page 1 of 2
Back12Next

File Archive:

September 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Sep 1st
    14 Files
  • 2
    Sep 2nd
    19 Files
  • 3
    Sep 3rd
    9 Files
  • 4
    Sep 4th
    1 Files
  • 5
    Sep 5th
    2 Files
  • 6
    Sep 6th
    3 Files
  • 7
    Sep 7th
    12 Files
  • 8
    Sep 8th
    22 Files
  • 9
    Sep 9th
    17 Files
  • 10
    Sep 10th
    19 Files
  • 11
    Sep 11th
    3 Files
  • 12
    Sep 12th
    2 Files
  • 13
    Sep 13th
    15 Files
  • 14
    Sep 14th
    16 Files
  • 15
    Sep 15th
    15 Files
  • 16
    Sep 16th
    7 Files
  • 17
    Sep 17th
    13 Files
  • 18
    Sep 18th
    2 Files
  • 19
    Sep 19th
    2 Files
  • 20
    Sep 20th
    14 Files
  • 21
    Sep 21st
    20 Files
  • 22
    Sep 22nd
    28 Files
  • 23
    Sep 23rd
    13 Files
  • 24
    Sep 24th
    10 Files
  • 25
    Sep 25th
    0 Files
  • 26
    Sep 26th
    0 Files
  • 27
    Sep 27th
    0 Files
  • 28
    Sep 28th
    0 Files
  • 29
    Sep 29th
    0 Files
  • 30
    Sep 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close