exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 101 - 125 of 1,035 RSS Feed

Files Date: 2011-04-01 to 2011-04-30

CA Arcot WebFort Versatile Authentication Server XSS / URL Redirection
Posted Apr 27, 2011
Authored by Kevin Kotas | Site www3.ca.com

CA Technologies support is alerting customers to multiple security risks with CA Arcot WebFort Versatile Authentication Server. Two vulnerabilities exist that can allow a remote attacker to potentially compromise web user security. The first set of vulnerabilities occur due to insufficient handling of request parameters sent to the Arcot Administrative Console. An attacker, who can convince a user to follow a URL or view a webpage, can potentially conduct cross-site scripting attacks. The second vulnerability occurs due to insufficient filtering of a request parameter sent to the Arcot Administrative Console. An attacker, who can convince a user to follow a URL or view a webpage, can use redirection to potentially carry out additional web based attacks.

tags | advisory, remote, web, vulnerability, xss
advisories | CVE-2011-1826, CVE-2011-1825
SHA-256 | b7f2426e298629c164af95d01b3886396dbdea3a03957d1a67ef5c0aac369b16
PHPDirector 0.30 Insecure Cookie Handling
Posted Apr 27, 2011
Authored by KnocKout

PHPDirector version 0.30 suffers from an insecure cookie handling vulnerability that allows for privilege escalation.

tags | exploit, insecure cookie handling
SHA-256 | 7602308b2836f9720c4e4130f269ad8f2a067e36ac6e61aedb1949bfcdcc9d78
Win32/XP SP3 Activate Guest Account Shellcode
Posted Apr 27, 2011
Authored by Xecuti0N3r

67 bytes small activate guest account shellcode for Win32/XP SP3.

tags | shellcode
systems | windows
SHA-256 | 5eb9e5a59cb9205dcfa21e15cf1832cb98df3ec64bbd499193aa321ce059954b
Cpanel X3 11.28.87 Cross Site Scripting
Posted Apr 27, 2011

Cpanel X3 version 11.28.87 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 668b877429a09753fc0687182acb6df487a2b9db0ecabdd3f2936732861f677c
ConnectPlatform 0.30 SQL Injection
Posted Apr 27, 2011
Authored by KnocKout

ConnectPlatform version 0.30 suffers from a remote SQL injection vulnerability in blog.cgi.

tags | exploit, remote, cgi, sql injection
SHA-256 | 37bdcf8e4441542a78ef20c4bcf339293400fbaed028ef02e74f6b8ee9befa9a
phpwcms 1.4.7 Cross Site Request Forgery
Posted Apr 27, 2011
Authored by Xecuti0N3r

phpwcms version 1.4.7 add administrator cross site request forgery exploit.

tags | exploit, csrf
SHA-256 | 704bf06ac1515e2eb1ca1b482d400efceeedf4be19db3f0fc4522173e85c5c2d
Plum Design Studio Blind SQL Injection
Posted Apr 27, 2011
Authored by RoAd_KiLlEr

Plum Design Studio suffers from a remote blind SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 36b7ad08d84276e198f38e009a15639629647f3253a30a76774f4eff224057c0
Secunia Security Advisory 44363
Posted Apr 27, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A security issue has been reported in Cisco IOS, which can be exploited by malicious people to bypass certain security restrictions.

tags | advisory
systems | cisco
SHA-256 | a6be87a905b2573daa159b8b88957275d59c69405af5f5d6fe85a6ad594533dd
Secunia Security Advisory 44306
Posted Apr 27, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities have been reported in openSUSE Build Service, which can be exploited by malicious people to conduct cross-site scripting attacks and bypass certain security restrictions.

tags | advisory, vulnerability, xss
SHA-256 | 9a103cd17d37f21824cfbdf4dd90fa9ee8e5bc0c33fc4fd9cf4b92820fabd1dc
Secunia Security Advisory 44383
Posted Apr 27, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in openSUSE Build Service, which can be exploited by malicious people to bypass certain security restrictions.

tags | advisory
SHA-256 | f2590947096af849c99567becd5cb42454656154d5c05c2d12371b6eba579481
LibAVCodec AMV Out Of Array Write
Posted Apr 27, 2011
Authored by Dominic Chell | Site ngssoftware.com

Dominic Chell of NGS Secure has discovered a high risk vulnerability in LibAVCodec. Opening a malformed AMV file can result in an out of array write and potentially arbitrary code execution when using this library. Whilst the vulnerability may affect multiple applications that use this library, it was only tested on VLC media player. VLC media player versions 1.1.9 and below are affected.

tags | advisory, arbitrary, code execution
SHA-256 | 17c0e508710bb4f00f1f179e385b3d378527bd4b35827d30da710e418db26947
Microsoft Paint Shellcode
Posted Apr 27, 2011
Authored by Xecuti0N3r

52 bytes small Microsoft Paint shellcode for Win32/XP SP3.

tags | shellcode
systems | windows
SHA-256 | 6cce3b104986cba0ba0f7a38893069b2dce9092a964b0fa5c9993637147ddc78
Secunia Security Advisory 44314
Posted Apr 27, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been reported in Videcon Viola DVR VIO-4/1000, which can be exploited by malicious people to disclose sensitive information.

tags | advisory, vulnerability
SHA-256 | 572461b87df68f531f4bb03e9e345de61f7aa87136626d8bfdf04cf1fd1ac534
Secunia Security Advisory 44350
Posted Apr 27, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - OpenVZ has issued an update for the kernel. This fixes multiple weaknesses and vulnerabilities, which can be exploited by malicious, local users to disclose certain system information, bypass certain security restrictions, cause a DoS (Denial of Service), and potentially gain escalated privileges.

tags | advisory, denial of service, kernel, local, vulnerability
SHA-256 | 11cc3ef33852b29fdabe838c757706245d0fb726331366bd295ed3ce280c420f
Secunia Security Advisory 44342
Posted Apr 27, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in phpMiniAdmin, which can be exploited by malicious people to conduct cross-site request forgery attacks.

tags | advisory, csrf
SHA-256 | b261ba0807f9d417a3726a48fd2c05fc1b2e1f0a05cb54bba34b428c6186781c
Secunia Security Advisory 44348
Posted Apr 27, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - High-Tech Bridge SA has discovered a vulnerability in the WP Ajax Recent Posts plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
SHA-256 | 1c0083bc38f5dcbc9d0bba9f575169c0e1e12f0231401d4da5807401d3e1f4ed
Secunia Security Advisory 44380
Posted Apr 27, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in IBM solidDB, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
SHA-256 | 0287578e1fa7efb9eaee0c818f1994a312a06b390a2571602e41b83c2fbc5e65
Secunia Security Advisory 44318
Posted Apr 27, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been reported in Spree, which can be exploited by malicious people to disclose potentially sensitive information and compromise a vulnerable system.

tags | advisory, vulnerability
SHA-256 | 96e3458e571c827da29079c9ccedf7f238acda2e931956253692217547458ec7
Secunia Security Advisory 44334
Posted Apr 27, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - John Leitch has discovered a vulnerability in webERP, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
SHA-256 | a8f9b49d002afdd0f7c986f8ed7e30f88d9dbea8293b4f4fed696e3ae615ab06
Secunia Security Advisory 44353
Posted Apr 27, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in the GNU C Library, which can be exploited by malicious people to cause a DoS (Denial of Service).

tags | advisory, denial of service
SHA-256 | 25d745fddc520801daa3e5ab68d60d405e52b5d89e206ef28fbedd76a1bcf55f
Secunia Security Advisory 44332
Posted Apr 27, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Digital Security Research Group has reported two vulnerabilities in SMSGATE.4, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.

tags | advisory, denial of service, vulnerability
SHA-256 | c77538b6f910d5574c527d3e039fc0c4e8146183bae78e128d2a065294875e5e
Debian Security Advisory 2226-1
Posted Apr 27, 2011
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2226-1 - M. Lucinskij and P. Tumenas discovered a buffer overflow in the code for processing S3M tracker files in the Modplug tracker music library, which may result in the execution of arbitrary code.

tags | advisory, overflow, arbitrary
systems | linux, debian
advisories | CVE-2011-1574
SHA-256 | 023f4c3e1f5ae24e46ffdffd22372a8260f34728a5f7bee9289c67f0e4ed5694
ShelTec Inc. SQL Injection
Posted Apr 27, 2011
Authored by eXeSoul

ShelTec suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | b2101eff0bc8dc7009284e9716908417930b776af679accdef3e45a622bf458f
Debian Security Advisory 2225-1
Posted Apr 27, 2011
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2225-1 - Several vulnerabilities have been discovered in Asterisk, an Open Source PBX and telephony toolkit.

tags | advisory, vulnerability
systems | linux, debian
advisories | CVE-2011-1147, CVE-2011-1174, CVE-2011-1175, CVE-2011-1507, CVE-2011-1599
SHA-256 | bd5456aa88bf9875926ee1fefd31e522da42c5cce7535683847404db3202ada9
WP-Ajax-Recent-Posts 1.0.1 Cross Site Scripting
Posted Apr 27, 2011
Authored by High-Tech Bridge SA | Site htbridge.com

The WP-Ajax-Recent-Posts WordPress plugin version 1.0.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 143ab7232d96035a56c57a2557f859393291780632f5e08611e1e895b810720a
Page 5 of 42
Back34567Next

File Archive:

March 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    16 Files
  • 2
    Mar 2nd
    0 Files
  • 3
    Mar 3rd
    0 Files
  • 4
    Mar 4th
    32 Files
  • 5
    Mar 5th
    28 Files
  • 6
    Mar 6th
    42 Files
  • 7
    Mar 7th
    17 Files
  • 8
    Mar 8th
    13 Files
  • 9
    Mar 9th
    0 Files
  • 10
    Mar 10th
    0 Files
  • 11
    Mar 11th
    15 Files
  • 12
    Mar 12th
    19 Files
  • 13
    Mar 13th
    21 Files
  • 14
    Mar 14th
    38 Files
  • 15
    Mar 15th
    15 Files
  • 16
    Mar 16th
    0 Files
  • 17
    Mar 17th
    0 Files
  • 18
    Mar 18th
    10 Files
  • 19
    Mar 19th
    32 Files
  • 20
    Mar 20th
    46 Files
  • 21
    Mar 21st
    16 Files
  • 22
    Mar 22nd
    13 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    12 Files
  • 26
    Mar 26th
    31 Files
  • 27
    Mar 27th
    19 Files
  • 28
    Mar 28th
    42 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close