what you don't know can hurt you
Showing 1 - 14 of 14 RSS Feed

Files Date: 2021-09-20

Red Hat Security Advisory 2021-3559-01
Posted Sep 20, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-3559-01 - Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Issues addressed include a code execution vulnerability.

tags | advisory, code execution, ruby
systems | linux, redhat
advisories | CVE-2020-36327, CVE-2021-31799, CVE-2021-31810, CVE-2021-32066
MD5 | f66355ca02d719f26e871be2646a5870
Microsoft Windows MSHTML Overview
Posted Sep 20, 2021
Authored by Eduardo Braun Prado

This article discusses the CVE-2021-40444 vulnerability and an alternative path that reduces the lines of JS code to trigger the issue and does not require CAB archives.

tags | exploit
advisories | CVE-2021-40444
MD5 | adb871524d9737af0fef53123fa0b931
BSides SF 2022 Call For Papers
Posted Sep 20, 2021
Site bsidessf.org

BSides SF is soliciting papers and presentations for the 2022 annual BSidesSF conference. It will be located at City View at the Metreon in downtown San Francisco February 5th through the 6th, 2022.

tags | paper, conference
MD5 | 3688934d41ac6a307dd63d906a052109
T-Soft E-Commerce 4 Cross Site Request Forgery
Posted Sep 20, 2021
Authored by Alperen Ergel

T-Soft E-Commerce version 4 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | 6e54f2c9db010d22ce70cd8e73093ee8
Proxmark 4.14434
Posted Sep 20, 2021
Authored by Christian Herrmann | Site github.com

This is a custom firmware written for the Proxmark3 device. It extends the currently available firmware.

Changes: This version brings full support of MIFARE DESfire and bug fixes.
tags | tool
systems | unix
MD5 | 12400a8a53d1cdc84e7a73c382f8c45b
Church Management System 1.0 SQL Injection
Posted Sep 20, 2021
Authored by Erwin Krazek

Church Management System version 1.0 suffers from a remote SQL injection vulnerability. Original discovery of SQL injection in this version is attributed to Murat Demirci in July of 2021.

tags | exploit, remote, sql injection
MD5 | 445f577a4e7298a5becd39ec3d3cc6c3
litefuzz 1.0
Posted Sep 20, 2021
Authored by Jeremy Brown | Site github.com

litefuzz is a multi-platform fuzzer for poking at userland binaries and servers.

tags | tool, fuzzer
systems | unix
MD5 | e20e90558f9c0c1dc16ef9f40dcbe095
Budget And Expense Tracker System 1.0 SQL Injection
Posted Sep 20, 2021
Authored by Prunier Charles-Yves

Budget and Expense Tracker System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
MD5 | 40bed83356597733c7fd84b5cb6b2ee0
AMD Chipset Driver Information Disclosure / Memory Leak
Posted Sep 20, 2021
Authored by Kyriakos Economou | Site zeroperil.co.uk

ZeroPeril Ltd has discovered two issues inside the amdpsp.sys (v4.13.0.0) kernel driver module that ships with the AMD Chipset Drivers package for multiple AMD chipsets. The first issue is an information disclosure type security vulnerability and the second is a memory leak type bug due to insufficient releasing of all associated allocated resources upon request. The researchers have verified both in the latest Revision Number (2.13.27.501) of the package that was released the 4th of February 2021.

tags | advisory, kernel, memory leak, info disclosure
advisories | CVE-2021-26333
MD5 | f75f9682872ea122ae17d2135dc3359a
Apple Security Advisory 2021-09-13-5
Posted Sep 20, 2021
Authored by Apple | Site apple.com

Apple Security Advisory 2021-09-13-5 - Safari 14.1.2 addresses code execution and use-after-free vulnerabilities.

tags | advisory, vulnerability, code execution
systems | apple
advisories | CVE-2021-30858
MD5 | ee3ea21c4a325b57d5d313a9d6c46f90
Online Food Ordering System 2.0 Shell Upload
Posted Sep 20, 2021
Authored by Abdullah Khawaja

Online Food Ordering System version 2.0 remote shell upload exploit.

tags | exploit, remote, shell
MD5 | 3f132c1cd4abfb44da7318034f0e0404
Church Management System 1.0 Shell Upload
Posted Sep 20, 2021
Authored by Abdullah Khawaja

Church Management System version 1.0 remote shell upload exploit.

tags | exploit, remote, shell
MD5 | 5c2e75b9bc007a4015cb43e73a0bf6dd
WordPress 5.7 Media Library XML Injection
Posted Sep 20, 2021
Authored by David Uton

WordPress version 5.7 suffers from a Media Library XML external entity injection vulnerability.

tags | exploit
advisories | CVE-2021-29447
MD5 | 285ded5933c9cbe2e0d8eae674b16808
Maxpatrol 8 / Xspider Denial Of Service
Posted Sep 20, 2021
Authored by AsCiI

Positive Technologies Maxpatrol 8 and Xspider appears to suffer from a denial of service vulnerability.

tags | exploit, denial of service
MD5 | 3d3ab27329281a1f41939a44b7d4918b
Page 1 of 1
Back1Next

File Archive:

September 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Sep 1st
    14 Files
  • 2
    Sep 2nd
    19 Files
  • 3
    Sep 3rd
    9 Files
  • 4
    Sep 4th
    1 Files
  • 5
    Sep 5th
    2 Files
  • 6
    Sep 6th
    3 Files
  • 7
    Sep 7th
    12 Files
  • 8
    Sep 8th
    22 Files
  • 9
    Sep 9th
    17 Files
  • 10
    Sep 10th
    19 Files
  • 11
    Sep 11th
    3 Files
  • 12
    Sep 12th
    2 Files
  • 13
    Sep 13th
    15 Files
  • 14
    Sep 14th
    16 Files
  • 15
    Sep 15th
    15 Files
  • 16
    Sep 16th
    7 Files
  • 17
    Sep 17th
    13 Files
  • 18
    Sep 18th
    2 Files
  • 19
    Sep 19th
    2 Files
  • 20
    Sep 20th
    14 Files
  • 21
    Sep 21st
    20 Files
  • 22
    Sep 22nd
    28 Files
  • 23
    Sep 23rd
    13 Files
  • 24
    Sep 24th
    10 Files
  • 25
    Sep 25th
    1 Files
  • 26
    Sep 26th
    1 Files
  • 27
    Sep 27th
    20 Files
  • 28
    Sep 28th
    0 Files
  • 29
    Sep 29th
    0 Files
  • 30
    Sep 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close