Acuity CMS version 2.6.x suffers from a shell upload vulnerability.
eb52dc2e6402bd8221b5dcbb9f2dd676100c2ec5e3e8bb777c4b9c31939659e0PHP versions 5.4.3 and below wddx_serialize_* / stream_bucket_* variant object null pointer dereference exploit.
186f4ea7623d98c66ebb266a599e771143dbdb3ba4aac5d564ff29b77b55d1d6The Mandos system allows computers to have encrypted root file systems and at the same time be capable of remote or unattended reboots. The computers run a small client program in the initial RAM disk environment which will communicate with a server over a network. All network communication is encrypted using TLS. The clients are identified by the server using an OpenPGP key that is unique to each client. The server sends the clients an encrypted password. The encrypted password is decrypted by the clients using the same OpenPGP key, and the password is then used to unlock the root file system.
16900475f719f8394ae99a19bad4cf17fa77baa7b0eaea068548cdbae183151cCura is a mobile phone application bundle of remote systems administration tools. It provides a personalized terminal emulator, a syslog module that allows for reading logs directly from a server, a SysMonitor module that visually graphs CPU and RAM usage percentages, access to Nmap, and Server Stats will offer general server information like its Vitals, Hardware information, Memory information, processes, and so on. A security feature will be implemented that allows users to have Cura's database completely wiped upon them sending the compromised phone a secret pattern of their choosing (e.g. send an SMS message containing "phone has been stolen!" to your Android phone to wipe Cura's database, and receive the location of the compromised phone as an SMS to your emergency phone number or as an email to your emergency email address).
11557623033f83fd59c047df77732ae8b78ffc6326f727c0c1aea355a332f580Real-DRAW PRO version 5.2.4 import file crash exploit.
27f6a9f28a767c7934f513559eb717b27d3864cfb5ab167f652b55fde794f48aQuarks PwDump is a native Win32 tool to extract credentials from Windows operating systems. It currently extracts local accounts NT/LM hashes and history, domain accounts NT/LM hashes and history, cached domain password, and Bitlocker recovery information.
2eacce746014f5b388071f4ac9185d0040e4e0b9d6ad96eadfdb72d65f73e252Ajaxmint-Gallery version 1.0 suffers from a cross site request forgery vulnerability.
75aab5ec49b45f29fd9cd17396f521f35a6baa0bb85bb434c5e2a2a7d7f276d2Acuity CMS version 2.6.x suffers from a directory traversal vulnerability.
ad8b1bf9899ab1799f374a4a67350dc902f4719fa2d2aef608d9b1f719fea44aAZ Photo Album Script suffers from a cross site scripting vulnerability.
67c1f4e7e765e2ef1004814e8c609e03928e2d5b01480f844ec760aa7baca03aDVD-Lab Studio version 1.25 DAL file denial of service exploit.
6c92ab45feabb5aded08e3f4832ee741f917bd89f4974e8f8422d5086af11be8CHICCO SnoopyClub suffers from cross site scripting and remote SQL injection vulnerabilities.
b1ae17f53b8459d223aa7fcc620234e629964c2fce1de0383bdcb7922b42b1aaConcrete CMS version 5.5 suffers from shell upload and denial of service vulnerabilities.
6ec38ad9d2006135e28b4b0fb7f180db578fa58f67aac5af3c4a62bcf7e28a38CMS-AhMeBa Professional suffers from a shell upload vulnerability.
8999bb5fdeb5f65185110d656bb316ddba010fe277906e9d7b549586c9fe929eDouble Take Design CMS suffers from a remote SQL injection vulnerability.
0b18f1293e895c91c862b92d6f6949e455b10ef54485aee3bae488ce172e5a20Nogod suffers from multiple remote SQL injection vulnerabilities.
4b2d46a1773ec0e0e5d87898ec7949e8fcfbf5d7ba3afc39b12cc6d1a7607dcb
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed