exploit the possibilities
Showing 1 - 12 of 12 RSS Feed

Files Date: 2021-06-28

WordPress wpDiscuz 7.0.4 Shell Upload
Posted Jun 28, 2021
Authored by Hoa Nguyen, Chloe Chamberland | Site metasploit.com

This Metasploit module exploits an arbitrary file upload in the WordPress wpDiscuz plugin versions from 7.0.0 through 7.0.4. This flaw gave unauthenticated attackers the ability to upload arbitrary files, including PHP files, and achieve remote code execution on a vulnerable server.

tags | exploit, remote, arbitrary, php, code execution, file upload
advisories | CVE-2020-24186
MD5 | fdf8135289f12d026401f86e91ab3f6d
Ubuntu Security Notice USN-4997-2
Posted Jun 28, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4997-2 - USN-4997-1 fixed vulnerabilities in the Linux kernel for Ubuntu 21.04. This update provides the corresponding updates for the Linux KVM kernel for Ubuntu 21.04. Norbert Slusarek discovered a race condition in the CAN BCM networking protocol of the Linux kernel leading to multiple use-after-free vulnerabilities. A local attacker could use this issue to execute arbitrary code. Various other issues were also addressed.

tags | advisory, arbitrary, kernel, local, vulnerability, protocol
systems | linux, ubuntu
advisories | CVE-2020-24586, CVE-2020-24587, CVE-2020-24588, CVE-2020-26139, CVE-2020-26141, CVE-2020-26145, CVE-2020-26147, CVE-2021-23133, CVE-2021-23134, CVE-2021-31440, CVE-2021-31829, CVE-2021-32399, CVE-2021-33034, CVE-2021-33200, CVE-2021-3506, CVE-2021-3543, CVE-2021-3609
MD5 | 434b3d99e74ec911fad05d97ac12ede3
Constructor.Win32.Bifrose.asc Buffer Overflow / Heap Corruption
Posted Jun 28, 2021
Authored by malvuln | Site malvuln.com

Constructor.Win32.Bifrose.asc malware suffers from buffer overflow and heap corruption vulnerabilities.

tags | exploit, overflow, vulnerability
systems | windows
MD5 | 07ed21e550cfbb0073d38b8e97e1b7b1
WordPress YOP Polls 6.2.7 Cross Site Scripting
Posted Jun 28, 2021
Authored by Toby Jackson

WordPress YOP Polls plugin version 6.2.7 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | 5cce523dc226e7cf917fad7c812b2df7
Personnel Record Management System 1.0 Authentication Bypass / XSS
Posted Jun 28, 2021
Authored by Richard Jones

Personnel Record Management System version 1.0 unauthenticated administrator addition exploit that also adds a stored cross site scripting payload.

tags | exploit, xss, bypass
MD5 | 7830494b80453a138becbe2ae78fc9d3
Netgear WNAP320 2.0.3 Remote Code Execution
Posted Jun 28, 2021
Authored by Bryan Leong

Netgear WNAP320 version 2.0.3 suffers from an unauthenticated remote code execution vulnerability.

tags | exploit, remote, code execution
MD5 | 6d46233dd769ed00d87833e2d972880f
Trojan-Dropper.Win32.Scrop.dyi Insecure Permissions
Posted Jun 28, 2021
Authored by malvuln | Site malvuln.com

Trojan-Dropper.Win32.Scrop.dyi malware suffers from an insecure permissions vulnerability.

tags | exploit, trojan
systems | windows
MD5 | d2aa42c41f0e017cbe0ecd11122056a8
Personnel Record Management System 1.0 SQL Injection
Posted Jun 28, 2021
Authored by Richard Jones

Personnel Record Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
MD5 | 58f624d5b154400123a08e3fc900c8e1
Android Data Exfiltration
Posted Jun 28, 2021
Authored by Roman Fiedler | Site unparalleled.eu

This is a tool that was developed to run as alternative "/init". The program will make an Android phone show up as mass storage device during boot. The complete internal storage is available for reading including the partition table and all 42 partitions of the Android system.

tags | exploit
MD5 | 589289cf9fb87c0dc23597c6c7a4b4b3
Email-Worm.Win32.Trance.a Insecure Permissions
Posted Jun 28, 2021
Authored by malvuln | Site malvuln.com

Email-Worm.Win32.Trance.a malware suffers from an insecure permissions vulnerability.

tags | exploit, worm
systems | windows
MD5 | fb45ce08d60cf295aac4ffd68c5e2a8b
Smart Contract Automated Testing Guidelines
Posted Jun 28, 2021
Authored by Loc Phan Van

Whitepaper called Smart Contract Automated Testing Guidelines that provides guidance on automation.

tags | paper
MD5 | 3cfea32dd359b6de7c8783c7a36444c2
Android 2.0 FreeCIV Arbitrary Code Execution
Posted Jun 28, 2021
Authored by Raed Ahsan

Android version 2.0 exploit for FreeCIV versions 2.2 before 2.2.1 and 2.3 before 2.3.0 that achieves root.

tags | exploit, root
advisories | CVE-2010-2445
MD5 | 3a7206dc1575a4f0e04e17dc57297340
Page 1 of 1
Back1Next

File Archive:

September 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Sep 1st
    14 Files
  • 2
    Sep 2nd
    19 Files
  • 3
    Sep 3rd
    9 Files
  • 4
    Sep 4th
    1 Files
  • 5
    Sep 5th
    2 Files
  • 6
    Sep 6th
    3 Files
  • 7
    Sep 7th
    12 Files
  • 8
    Sep 8th
    22 Files
  • 9
    Sep 9th
    17 Files
  • 10
    Sep 10th
    19 Files
  • 11
    Sep 11th
    3 Files
  • 12
    Sep 12th
    2 Files
  • 13
    Sep 13th
    15 Files
  • 14
    Sep 14th
    16 Files
  • 15
    Sep 15th
    15 Files
  • 16
    Sep 16th
    7 Files
  • 17
    Sep 17th
    13 Files
  • 18
    Sep 18th
    2 Files
  • 19
    Sep 19th
    2 Files
  • 20
    Sep 20th
    14 Files
  • 21
    Sep 21st
    0 Files
  • 22
    Sep 22nd
    0 Files
  • 23
    Sep 23rd
    0 Files
  • 24
    Sep 24th
    0 Files
  • 25
    Sep 25th
    0 Files
  • 26
    Sep 26th
    0 Files
  • 27
    Sep 27th
    0 Files
  • 28
    Sep 28th
    0 Files
  • 29
    Sep 29th
    0 Files
  • 30
    Sep 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close