exploit the possibilities
Showing 1 - 25 of 37 RSS Feed

Files Date: 2022-01-05

WordPress Catch Themes Demo Import Shell Upload
Posted Jan 5, 2022
Authored by h00die, Thinkland Security Team, Ron Jost | Site metasploit.com

WordPress Catch Themes Demo Import plugin versions prior to 1.8 suffer from a remote shell upload vulnerability.

tags | exploit, remote, shell
advisories | CVE-2021-39352
MD5 | 8d1fbe33f59730cb43f9c73ebbc34f56
Ubuntu Security Notice USN-5204-1
Posted Jan 5, 2022
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 5204-1 - Chris Bailey discovered that Django incorrectly handled evaluating submitted passwords. A remote attacker could possibly use this issue to consume resources, resulting in a denial of service. Dennis Brinkrolf discovered that Django incorrectly handled the dictsort template filter. A remote attacker could possibly use this issue to obtain sensitive information. Dennis Brinkrolf discovered that Django incorrectly handled certain file names. A remote attacker could possibly use this issue to save files to arbitrary filesystem locations.

tags | advisory, remote, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2021-45115, CVE-2021-45116, CVE-2021-45452
MD5 | 3c5f59d38773c417ee1b5489cd2571eb
Dixell XWEB 500 Arbitrary File Write
Posted Jan 5, 2022
Authored by Roberto Palamaro

Dixell XWEB 500 suffers from an arbitrary file write vulnerability.

tags | exploit, arbitrary
MD5 | ace1f361a5366a36354d8e9291383d4f
Red Hat Security Advisory 2022-0015-01
Posted Jan 5, 2022
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2022-0015-01 - Red Hat Single Sign-On 7.5 container images, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. This is a security update Red Hat Single Sign-On 7.5, and includes one security fix.

tags | advisory, web
systems | linux, redhat
advisories | CVE-2021-3712, CVE-2021-4133, CVE-2021-42574
MD5 | 543483ba09b56ff5957900dc5cbbfe78
Gerapy 0.9.7 Remote Code Execution
Posted Jan 5, 2022
Authored by Jeremiasz Pluta

Gerapy version 0.9.7 suffers from a remote code execution vulnerability.

tags | exploit, remote, code execution
advisories | CVE-2021-43857
MD5 | fed7e84d40c4fca6a45cb8063abf7360
Affiliate Pro 1.7 Cross Site Scripting
Posted Jan 5, 2022
Authored by Vulnerability Laboratory | Site vulnerability-lab.com

Affiliate Pro version 1.7 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 6aa099da436c048432a0df88b785895f
Hostel Management System 2.1 Cross Site Scripting
Posted Jan 5, 2022
Authored by Chinmay Vishwas Divekar

Hostel Management System version 2.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 64f609e473a38b980fd3073277aeb2c0
TermTalk Server 3.24.0.2 Arbitrary File Read
Posted Jan 5, 2022
Authored by Fabiano Golluscio

TermTalk Server version 3.24.0.2 suffers from an arbitrary file read vulnerability.

tags | exploit, arbitrary
MD5 | b7048ddfa83c76f1d138d4563e5ece5a
Rocket LMS 1.1 Cross Site Scripting
Posted Jan 5, 2022
Authored by Vulnerability Laboratory | Site vulnerability-lab.com

Rocket LMS version 1.1 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | 43ed2c922dd8a039c37f3f9376c26cfd
openSIS Student Information System 8.0 SQL Injection
Posted Jan 5, 2022
Authored by securityforeveryone.com

openSIS Student Information System version 8.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | ae5f58d111d585a68760af1d7a8c2fb2
Online Admission System 1.0 Remote Code Execution
Posted Jan 5, 2022
Authored by Jeremiasz Pluta

Online Admission System version 1.0 suffers from an unauthenticated remote code execution vulnerability.

tags | exploit, remote, code execution
MD5 | 067dc9917f063d76545f476f72a30c18
Hospitals Patient Records Management System 1.0 Account TakeOver
Posted Jan 5, 2022
Authored by twseptian

Hospitals Patient Records Management System version 1.0 suffers from an account takeover vulnerability.

tags | exploit
MD5 | d8db9277603b5499dc2723ded898edcc
WordPress AAWP 3.16 Cross Site Scripting
Posted Jan 5, 2022
Authored by Andrea Bocchetti

WordPress AAWP plugin version 3.16 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 1dd2000d7305a551456328c47722894f
uDoctorAppointment 2.1.1 Cross Site Scripting
Posted Jan 5, 2022
Authored by Vulnerability Laboratory | Site vulnerability-lab.com

uDoctorAppointment version 2.1.1 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 12eedf5e0cf527c76bc44e849f7ccf67
Automox Agent 32 Local Privilege Escalation
Posted Jan 5, 2022
Authored by Greg Foss

Automox Agent version 32 suffers from a local privilege escalation vulnerability.

tags | exploit, local
advisories | CVE-2021-43326
MD5 | 502a2308e379f0ec74ebcab935a3e860
Vodafone H-500-s 3.5.10 WiFi Password Disclosure
Posted Jan 5, 2022
Authored by Daniel Monzon

Vodafone H-500-s version 3.5.10 suffers from a wifi password disclosure vulnerability.

tags | exploit, info disclosure
MD5 | d4a56e2d1badafc971ff7d04eaf5a5f5
Hospitals Patient Records Management System 1.0 SQL Injection
Posted Jan 5, 2022
Authored by twseptian

Hospitals Patient Records Management System version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | b318587cf84726625fbb34fb7c3dc04c
Easy Cart Shopping Cart 2021 Cross Site Scripting
Posted Jan 5, 2022
Authored by Vulnerability Laboratory | Site vulnerability-lab.com

Easy Cart Shopping Cart version 2021 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 12ff2a1fbf10a5f34378fed272fb0d82
AWebServer GhostBuilding 18 Denial Of Service
Posted Jan 5, 2022
Authored by Andres Ramos

AWebServer GhostBuilding version 18 suffers from a denial of service vulnerability.

tags | exploit, denial of service
MD5 | 99b512579135ea21e2f61ab1ba00d6f3
Virtual Airline Manager 2.6.2 SQL Injection
Posted Jan 5, 2022
Authored by Milad Karimi

Virtual Airline Manager version 2.6.2 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 2e30886ee16610518ce983bf8c84a341
cWifi Hotspot Wireless CP Code Execution
Posted Jan 5, 2022
Authored by Vulnerability Laboratory | Site vulnerability-lab.com

cWifi Hotspot Wireless CP suffers from a code execution vulnerability.

tags | exploit, code execution
MD5 | 2371a158d17279351da76595665f3e7a
RiteCMS 3.1.0 Arbitrary File Overwrite
Posted Jan 5, 2022
Authored by faisalfs10x

RiteCMS versions 3.1.0 and below suffer from an arbitrary file overwrite vulnerability.

tags | exploit, arbitrary
MD5 | cf8726ea6affd5248b5eab8bb01f28b9
RiteCMS 3.1.0 Arbitrary File Deletion
Posted Jan 5, 2022
Authored by faisalfs10x

RiteCMS versions 3.1.0 and below suffer from an arbitrary file deletion vulnerability.

tags | exploit, arbitrary
MD5 | 07a5012d72060344e0ae19361f61dc68
VMware Security Advisory 2022-0001
Posted Jan 5, 2022
Authored by VMware | Site vmware.com

VMware Security Advisory 2022-0001 - VMware Workstation, Fusion and ESXi updates address a heap overflow vulnerability.

tags | advisory, overflow
advisories | CVE-2021-22045
MD5 | b4c69f97394ed3803ac463dc628d1b3a
Safari Montage 8.5 Cross Site Scripting
Posted Jan 5, 2022
Authored by Momen Eldawakhly

Safari Montage version 8.5 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2021-45425
MD5 | 4f650c4f8f144a943aa4f0d6ed44f6d7
Page 1 of 2
Back12Next

File Archive:

January 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jan 1st
    2 Files
  • 2
    Jan 2nd
    0 Files
  • 3
    Jan 3rd
    20 Files
  • 4
    Jan 4th
    4 Files
  • 5
    Jan 5th
    37 Files
  • 6
    Jan 6th
    20 Files
  • 7
    Jan 7th
    4 Files
  • 8
    Jan 8th
    0 Files
  • 9
    Jan 9th
    0 Files
  • 10
    Jan 10th
    18 Files
  • 11
    Jan 11th
    8 Files
  • 12
    Jan 12th
    19 Files
  • 13
    Jan 13th
    31 Files
  • 14
    Jan 14th
    2 Files
  • 15
    Jan 15th
    2 Files
  • 16
    Jan 16th
    2 Files
  • 17
    Jan 17th
    18 Files
  • 18
    Jan 18th
    13 Files
  • 19
    Jan 19th
    15 Files
  • 20
    Jan 20th
    0 Files
  • 21
    Jan 21st
    0 Files
  • 22
    Jan 22nd
    0 Files
  • 23
    Jan 23rd
    0 Files
  • 24
    Jan 24th
    0 Files
  • 25
    Jan 25th
    0 Files
  • 26
    Jan 26th
    0 Files
  • 27
    Jan 27th
    0 Files
  • 28
    Jan 28th
    0 Files
  • 29
    Jan 29th
    0 Files
  • 30
    Jan 30th
    0 Files
  • 31
    Jan 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close