exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 49 RSS Feed

Files Date: 2023-05-24

Debian Security Advisory 5410-1
Posted May 24, 2023
Authored by Debian | Site debian.org

Debian Linux Security Advisory 5410-1 - Multiple security issues were discovered in Sofia-SIP, a SIP User-Agent library, which could result in denial of service.

tags | advisory, denial of service
systems | linux, debian
advisories | CVE-2022-31001, CVE-2022-31002, CVE-2022-31003, CVE-2022-47516, CVE-2023-22741
SHA-256 | 6a5c35f944423c00333235bd7622abb351551dfe6fbfabc5d70316bb8466189a
Ubuntu Security Notice USN-6103-1
Posted May 24, 2023
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6103-1 - It was discovered that JSON Schema incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to exploit JavaScript runtimes and cause a denial of service or execute arbitrary code.

tags | advisory, remote, denial of service, arbitrary, javascript
systems | linux, ubuntu
advisories | CVE-2021-3918
SHA-256 | b8bb540756590db3d76511beb77a469c4d41e7876af021018b32db9f06b5c27d
FusionInvoice 2023-1.0 Cross Site Scripting
Posted May 24, 2023
Authored by Andrea Intilangelo

FusionInvoice version 2023-1.0 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2023-25439
SHA-256 | 025695812c81674c72c23cd6e0f848b4f9277e0d7574ffb741a4adf5ace223b8
Red Hat Security Advisory 2023-3276-01
Posted May 24, 2023
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2023-3276-01 - The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root.

tags | advisory, root
systems | linux, redhat
advisories | CVE-2023-22809
SHA-256 | 51db434bdac9e1d765db7e0ae1a010d796c792f5cce968883d44dfaf31b8adcb
Red Hat Security Advisory 2023-3269-01
Posted May 24, 2023
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2023-3269-01 - The binutils packages provide a collection of binary utilities for the manipulation of object code in various object file formats. It includes the ar, as, gprof, ld, nm, objcopy, objdump, ranlib, readelf, size, strings, strip, and addr2line utilities. Issues addressed include buffer overflow and null pointer vulnerabilities.

tags | advisory, overflow, vulnerability
systems | linux, redhat
advisories | CVE-2021-3826, CVE-2022-4285
SHA-256 | a289180fa7285e4d383b228c646180c2d4e702f9b90480dcf8cd3802e8af9b79
GetSimple CMS 3.3.16 Shell Upload
Posted May 24, 2023
Authored by Youssef Muhammad

GetSimple CMS version 3.3.16 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
advisories | CVE-2022-41544
SHA-256 | 99127c487b04ae24e2f03143097d9abfc702cfd0d14e9f6462be41ae66fc0642
Ubuntu Security Notice USN-6074-3
Posted May 24, 2023
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6074-3 - USN-6074-1 fixed vulnerabilities and USN-6074-2 fixed minor regressions in Firefox. The update introduced several minor regressions. This update fixes the problem. Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information across domains, or execute arbitrary code. Irvan Kurniawan discovered that Firefox did not properly manage memory when using RLBox Expat driver. An attacker could potentially exploits this issue to cause a denial of service. Anne van Kesteren discovered that Firefox did not properly validate the import call in service workers. An attacker could potentially exploits this to obtain sensitive information. Sam Ezeh discovered that Firefox did not properly handle certain favicon image files. If a user were tricked into opening a malicious favicon file, an attacker could cause a denial of service.

tags | advisory, denial of service, arbitrary, vulnerability
systems | linux, ubuntu
advisories | CVE-2023-32206, CVE-2023-32207, CVE-2023-32208, CVE-2023-32209, CVE-2023-32213
SHA-256 | 7d3fa9c2c23bb5c2e2deadaf33571680848e749c4924a7ad19facbb363e58246
Ubuntu Security Notice USN-6101-1
Posted May 24, 2023
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6101-1 - It was discovered that GNU binutils incorrectly handled certain DWARF files. An attacker could possibly use this issue to cause a crash or execute arbitrary code. This issue only affected Ubuntu 22.10. It was discovered that GNU binutils did not properly verify the version definitions in zer0-lengthverdef table. An attacker could possibly use this issue to cause a crash or execute arbitrary code. This issue only affected Ubuntu 22.04 LTS, Ubuntu 22.10 and Ubuntu 23.04.

tags | advisory, arbitrary
systems | linux, ubuntu
advisories | CVE-2023-1579, CVE-2023-1972, CVE-2023-25584, CVE-2023-25588
SHA-256 | 163e1361b1036adfae116692f58dd0705369897977479d4b1f14c2c63f96b907
Red Hat Security Advisory 2023-3280-01
Posted May 24, 2023
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2023-3280-01 - Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.

tags | advisory
systems | linux, redhat
advisories | CVE-2023-25652, CVE-2023-25815, CVE-2023-29007
SHA-256 | 478c302246ce6f609213d2bbe423210776c6606679b7237cf8d06738be67b756
Red Hat Security Advisory 2023-3218-01
Posted May 24, 2023
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2023-3218-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.10.60.

tags | advisory
systems | linux, redhat
advisories | CVE-2022-3064
SHA-256 | 315cc1865f5c0ce57b74b613321db7517f5b2cf00c1f0fc17b622b162f72918a
thrsrossi Millhouse-Project 1.414 Shell Upload
Posted May 24, 2023
Authored by Chokri Hammedi

thrsrossi Millhouse-Project version 1.414 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
SHA-256 | 1ececf1ddc0c31852824c0b7dceddfc7d144d83e63121e5572869a090104debc
Roxy WI 6.1.0.0 Remote Command Execution
Posted May 24, 2023
Authored by Iyaad Luqman K

Roxy WI version 6.1.0.0 remote command execution exploit. This is a variant of the original disclosure of remote command execution in this version by Nuri Cilengir in April of 2023.

tags | exploit, remote
advisories | CVE-2022-31137
SHA-256 | 6cd2cb72c7cecd72ddfff4ac4a6371cf692a748e7944b6916cdfe762860b4a74
Ubuntu Security Notice USN-6102-1
Posted May 24, 2023
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6102-1 - It was discovered that xmldom incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to cause unexpected syntactic changes during XML processing. This issue only affected Ubuntu 20.04 LTS. It was discovered that xmldom incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to cause a denial of service.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2021-21366
SHA-256 | c0f3d3b7a1df8b0f75eb632b6da37c5c1d862021fe9e8af90823b2b72b7197d3
eScan Management Console 14.0.1400.2281 SQL Injection
Posted May 24, 2023
Authored by Sahil Ojha

eScan Management Console version 14.0.1400.2281 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2023-31702
SHA-256 | b3ba4fce4b4dc2f824dec401df7e583d04626d3bd8cdf55618bccafe95a7c07b
Ubuntu Security Notice USN-5996-2
Posted May 24, 2023
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 5996-2 - USN-5996-1 fixed vulnerabilities in Liblouis. This update provides the corresponding updates for Ubuntu 23.04. It was discovered that Liblouis incorrectly handled certain files. An attacker could possibly use this issue to cause a denial of service.

tags | advisory, denial of service, vulnerability
systems | linux, ubuntu
advisories | CVE-2023-26767
SHA-256 | 2932a14b40dbc7c6eda3b9a4c963e7d820a73d87be2b7c4c950a50e0c989b10b
Ubuntu Security Notice USN-6098-1
Posted May 24, 2023
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6098-1 - It was discovered that Jhead did not properly handle certain crafted images while processing the JFIF markers. An attacker could cause Jhead to crash. This issue only affected Ubuntu 14.04 LTS, Ubuntu 16.04 LTS, and Ubuntu 18.04 LTS. It was discovered that Jhead did not properly handle certain crafted images while processing longitude tags. An attacker could cause Jhead to crash. This issue only affected Ubuntu 16.04 LTS and Ubuntu 18.04 LTS.

tags | advisory
systems | linux, ubuntu
advisories | CVE-2019-1010301, CVE-2019-1010302, CVE-2019-19035, CVE-2020-26208, CVE-2020-6624, CVE-2020-6625, CVE-2021-28276, CVE-2021-28278
SHA-256 | a1c191095a19a19f44a4639d33035e4ab7ce0967a3ab15a1f3bdd7049ed79516
Webkul Qloapps 1.5.2 Cross Site Scripting
Posted May 24, 2023
Authored by Astik Rawat

Webkul Qloapps version 1.5.2 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2023-30256
SHA-256 | f17f8a3451edc312c648831ea2100fcf316310edd5584de457c079cd3f6673f2
Red Hat Security Advisory 2023-3263-01
Posted May 24, 2023
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2023-3263-01 - Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.

tags | advisory
systems | linux, redhat
advisories | CVE-2023-25652, CVE-2023-29007
SHA-256 | 87d325d785199b62f92ed66e5050719793f4dcd9f10c2b60c1ed488482bb644f
eScan Management Console 14.0.1400.2281 Cross Site Scripting
Posted May 24, 2023
Authored by Sahil Ojha

eScan Management Console version 14.0.1400.2281 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2023-31703
SHA-256 | 712444b1a879c740cea95d2813873af697d3fb1136f3b1e6d6ecdfbd841a1b5b
Ubuntu Security Notice USN-6042-2
Posted May 24, 2023
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6042-2 - USN-6042-1 fixed a vulnerability in Cloud-init. The update introduced a regression on Ubuntu 20.04 LTS resulting in a possible loss of networking. This update fixes the problem. James Golovich discovered that sensitive data could be exposed in logs. An attacker could use this information to find hashed passwords and possibly escalate their privilege.

tags | advisory
systems | linux, ubuntu
SHA-256 | bd9d029d71c12c48e74d69927fca0cae93e4e48cbf1d15f31294447890f6d2ba
Quicklancer 1.0 SQL Injection
Posted May 24, 2023
Authored by Ahmet Umit Bayram

Quicklancer version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 51fa5d8ca5f2917e84dccac39215fed693d1f883836f7ad189cc609c3a02d17f
Smart School 1.0 SQL Injection
Posted May 24, 2023
Authored by Ahmet Umit Bayram

Smart School version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | be58a1eb3ab50ef7e24388ba01de787eed7e9f620baa0a4c7670c28c8aa85a2e
LeadPro CRM 1.0 SQL Injection
Posted May 24, 2023
Authored by Ahmet Umit Bayram

LeadPro CRM version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | c672f72e90474c1c79a7737b2bbd3614b8e2725def3907fa677b4a711846f3b8
Yank Note 3.52.1 Arbitrary Code Execution
Posted May 24, 2023
Authored by 8bitsec

Yank Note version 3.52.1 suffers from an arbitrary code execution vulnerability.

tags | exploit, arbitrary, code execution
advisories | CVE-2023-31874
SHA-256 | 3b2d9167450670f651051dc6f46d9f8d9f400693edb4845e2b53aaa350202c11
Esg 2.5 Cross Site Scripting
Posted May 24, 2023
Authored by indoushka

Esg version 2.5 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | af04171eca15deed52f8552f83c674dd50fbac0bfc4810eb316c96bde1b17488
Page 1 of 2
Back12Next

File Archive:

March 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    16 Files
  • 2
    Mar 2nd
    0 Files
  • 3
    Mar 3rd
    0 Files
  • 4
    Mar 4th
    32 Files
  • 5
    Mar 5th
    28 Files
  • 6
    Mar 6th
    42 Files
  • 7
    Mar 7th
    17 Files
  • 8
    Mar 8th
    13 Files
  • 9
    Mar 9th
    0 Files
  • 10
    Mar 10th
    0 Files
  • 11
    Mar 11th
    15 Files
  • 12
    Mar 12th
    19 Files
  • 13
    Mar 13th
    21 Files
  • 14
    Mar 14th
    38 Files
  • 15
    Mar 15th
    15 Files
  • 16
    Mar 16th
    0 Files
  • 17
    Mar 17th
    0 Files
  • 18
    Mar 18th
    10 Files
  • 19
    Mar 19th
    0 Files
  • 20
    Mar 20th
    0 Files
  • 21
    Mar 21st
    0 Files
  • 22
    Mar 22nd
    0 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    0 Files
  • 26
    Mar 26th
    0 Files
  • 27
    Mar 27th
    0 Files
  • 28
    Mar 28th
    0 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close