exploit the possibilities
Showing 1 - 21 of 21 RSS Feed

Files Date: 2021-07-26

Red Hat Security Advisory 2021-2881-01
Posted Jul 26, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2881-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.12.0. Issues addressed include man-in-the-middle, out of bounds write, and use-after-free vulnerabilities.

tags | advisory, vulnerability
systems | linux, redhat
advisories | CVE-2021-29969, CVE-2021-29970, CVE-2021-29976, CVE-2021-30547
MD5 | 9ff18897e6c682c14fffd9e00b43d129
Gentoo Linux Security Advisory 202107-55
Posted Jul 26, 2021
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202107-55 - Multiple vulnerabilities have been found in libsdl2, the worst of which could result in a Denial of Service condition. Versions less than 2.0.14-r1 are affected.

tags | advisory, denial of service, vulnerability
systems | linux, gentoo
advisories | CVE-2020-14409, CVE-2020-14410
MD5 | c23795e5885e59c93af1f4c4059b0b3b
WordPress SP Project And Document Remote Code Execution
Posted Jul 26, 2021
Authored by Ron Jost, Yann Castel | Site metasploit.com

This Metasploit module allows an attacker with a privileged WordPress account to launch a reverse shell due to an arbitrary file upload vulnerability in WordPress SP Project and Document plugin versions prior to 4.22. The security check only searches for lowercase file extensions such as .php, making it possible to upload .pHP files for instance. Finally, the uploaded payload can be triggered by a call to /wp-content/uploads/sp-client-document-manager/<user_id>/<random_payload_name>.php.

tags | exploit, arbitrary, shell, php, file upload
advisories | CVE-2021-24347
MD5 | d73daa7ac6681410691920aff7640598
Backdoor.Win32.Nbdd.bgz Buffer Overflow
Posted Jul 26, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Nbdd.bgz malware suffers from a buffer overflow vulnerability.

tags | exploit, overflow
systems | windows
MD5 | 0ab45590ad1c5bc094284a8fe02af3b1
Backdoor.Win32.Bifrose.acci Buffer Overflow
Posted Jul 26, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Bifrose.acci malware suffers from a buffer overflow vulnerability that can allow for code execution.

tags | exploit, overflow, code execution
systems | windows
MD5 | 15ce9434ff14f4275aa538464484e1b9
WordPress Modern Events Calendar Remote Code Execution
Posted Jul 26, 2021
Authored by Ron Jost, Yann Castel, Nguyen Van Khanh | Site metasploit.com

This Metasploit module allows an attacker with a privileged WordPress account to launch a reverse shell due to an arbitrary file upload vulnerability in WordPress Modern Events Calendar plugin versions prior to 5.16.5. This is due to an incorrect check of the uploaded file extension. Indeed, by using text/csv content-type in a request, it is possible to upload a .php payload as is is not forbidden by the plugin. Finally, the uploaded payload can be triggered by a call to /wp-content/uploads/<random_payload_name>.php.

tags | exploit, arbitrary, shell, php, file upload
advisories | CVE-2021-24145
MD5 | 75b29e689541f825031d9308d2c36b24
Kernel Live Patch Security Notice LSN-0079-1
Posted Jul 26, 2021
Authored by Benjamin M. Romer

It was discovered that the eBPF implementation in the Linux kernel did not properly track bounds information for 32 bit registers when performing div and mod operations. A local attacker could use this to possibly execute arbitrary code. It was discovered that the virtual file system implementation in the Linux kernel contained an unsigned to signed integer conversion error. A local attacker could use this to cause a denial of service (system crash) or execute arbitrary code.

tags | advisory, denial of service, arbitrary, kernel, local
systems | linux
advisories | CVE-2021-33909, CVE-2021-3600
MD5 | 3d25210f32b7ce386710ced319ba74bc
Gentoo Linux Security Advisory 202107-54
Posted Jul 26, 2021
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202107-54 - Multiple vulnerabilities have been found in libyang, the worst of which could result in a Denial of Service condition. Versions less than 1.0.236 are affected.

tags | advisory, denial of service, vulnerability
systems | linux, gentoo
advisories | CVE-2021-28902, CVE-2021-28903, CVE-2021-28904, CVE-2021-28905, CVE-2021-28906
MD5 | ffb176b4ae82462de6137dc6b7fc5c34
Backdoor.Win32.PsyRat.b Code Execution
Posted Jul 26, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.PsyRat.b malware suffers from a code execution vulnerability.

tags | exploit, code execution
systems | windows
MD5 | 871963dc1f8704795330612d4aaaa001
NoteBurner 2.35 Denial Of Service
Posted Jul 26, 2021
Authored by Achilles

NoteBurner version 2.35 suffers from a denial of service vulnerability.

tags | exploit, denial of service
MD5 | aa3389946376d9c650f5562f084b7810
Backdoor.Win32.PsyRat.b Denial Of Service
Posted Jul 26, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.PsyRat.b malware suffers from a denial of service vulnerability.

tags | exploit, denial of service
systems | windows
MD5 | 365677d7c72828dbeba71b71220f92a2
Backdoor.Win32.Agent.cu Code Execution
Posted Jul 26, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Agent.cu malware suffers from a code execution vulnerability.

tags | exploit, code execution
systems | windows
MD5 | 5437ec7780a9b74aaee43b55b5383497
Backdoor.Win32.Agent.cu Man-In-The-Middle
Posted Jul 26, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Agent.cu malware suffers from a man-in-the-middle vulnerability.

tags | exploit
systems | windows
MD5 | 95a42ae192bafa0dd596cea0c59c763a
Red Hat Security Advisory 2021-2883-01
Posted Jul 26, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2883-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.12.0. Issues addressed include man-in-the-middle, out of bounds write, and use-after-free vulnerabilities.

tags | advisory, vulnerability
systems | linux, redhat
advisories | CVE-2021-29969, CVE-2021-29970, CVE-2021-29976, CVE-2021-30547
MD5 | 9e5c80b06989920fc19b8efd0bed20e9
XOS Shop 1.0.9 Arbitrary File Deletion
Posted Jul 26, 2021
Authored by faisalfs10x

XOS Shop version 1.0.9 suffers from an authenticated arbitrary file deletion vulnerability.

tags | exploit, arbitrary
MD5 | 088ef37e41b5a3751ca446cf51c0dae0
Red Hat Security Advisory 2021-2882-01
Posted Jul 26, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2882-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 78.12.0. Issues addressed include man-in-the-middle, out of bounds write, and use-after-free vulnerabilities.

tags | advisory, vulnerability
systems | linux, redhat
advisories | CVE-2021-29969, CVE-2021-29970, CVE-2021-29976, CVE-2021-30547
MD5 | 4a053f52dcf4987668864f43e716b37a
Backdoor.Win32.Agent.cu Authentication Bypass
Posted Jul 26, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Agent.cu malware suffers from an authentication bypass vulnerability that can lead to code execution.

tags | exploit, code execution, bypass
systems | windows
MD5 | b5cae242019c10b430cfea0a2732e547
Leawo Prof. Media 11.0.0.1 Denial Of Service
Posted Jul 26, 2021
Authored by Achilles

Leawo Prof. Media version 11.0.0.1 suffers from a denial of service vulnerability.

tags | exploit, denial of service
MD5 | 2372bdeda3c60eb93e2b722ecd563fe9
Backdoor.Win32.Mazben.me Unauthenticated Open Proxy
Posted Jul 26, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Mazben.me malware suffers from an unauthenticated open proxy vulnerability.

tags | exploit
systems | windows
MD5 | 3837b5381e58db6d782012f51678b710
Backdoor.Win32.Hupigon.aaur Unauthenticated Open Proxy
Posted Jul 26, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Hupigon.aaur malware suffers from an unauthenticated open proxy vulnerability.

tags | exploit
systems | windows
MD5 | 133ee032c835a6bf7ad802354f2e2749
Elasticsearch ECE 7.13.3 Database Disclosure
Posted Jul 26, 2021
Authored by Joan Martinez

Elasticsearch ECE version 7.13.3 anonymous database dumping exploit.

tags | exploit, info disclosure
advisories | CVE-2021-22146
MD5 | 4ac1b7bc67c52c5c05cd6ea91a56b7e3
Page 1 of 1
Back1Next

File Archive:

July 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    13 Files
  • 2
    Jul 2nd
    12 Files
  • 3
    Jul 3rd
    1 Files
  • 4
    Jul 4th
    2 Files
  • 5
    Jul 5th
    34 Files
  • 6
    Jul 6th
    21 Files
  • 7
    Jul 7th
    21 Files
  • 8
    Jul 8th
    13 Files
  • 9
    Jul 9th
    6 Files
  • 10
    Jul 10th
    1 Files
  • 11
    Jul 11th
    3 Files
  • 12
    Jul 12th
    15 Files
  • 13
    Jul 13th
    19 Files
  • 14
    Jul 14th
    15 Files
  • 15
    Jul 15th
    15 Files
  • 16
    Jul 16th
    9 Files
  • 17
    Jul 17th
    2 Files
  • 18
    Jul 18th
    2 Files
  • 19
    Jul 19th
    19 Files
  • 20
    Jul 20th
    21 Files
  • 21
    Jul 21st
    53 Files
  • 22
    Jul 22nd
    14 Files
  • 23
    Jul 23rd
    14 Files
  • 24
    Jul 24th
    1 Files
  • 25
    Jul 25th
    1 Files
  • 26
    Jul 26th
    21 Files
  • 27
    Jul 27th
    8 Files
  • 28
    Jul 28th
    9 Files
  • 29
    Jul 29th
    12 Files
  • 30
    Jul 30th
    9 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close