The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications. It is designed to be used by people with a wide range of security experience and as such is ideal for developers and functional testers who are new to penetration testing. ZAP provides automated scanners as well as a set of tools that allow you to find security vulnerabilities manually. Windows installer.
fd47a9374db59f4b3afe123975016976e532f71752fe45571336d16636ebc39aThe Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications. It is designed to be used by people with a wide range of security experience and as such is ideal for developers and functional testers who are new to penetration testing. ZAP provides automated scanners as well as a set of tools that allow you to find security vulnerabilities manually. Mac OS X release.
417d9208ea3df826f3641131f0f8c2c475cf56f7926f51be1a6c8b155c06b1c9Tor-ramdisk is an i686 uClibc-based micro Linux distribution whose only purpose is to host a Tor server in an environment that maximizes security and privacy. Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. Security is enhanced by employing a monolithically compiled GRSEC/PAX patched kernel and hardened system tools. Privacy is enhanced by turning off logging at all levels so that even the Tor operator only has access to minimal information. Finally, since everything runs in ephemeral memory, no information survives a reboot, except for the Tor configuration file and the private RSA key which may be exported/imported by FTP. x86_64 version.
3306c7e085052181a0b7cb7150f2e6a86adc9942ce70c90c6ca896ea79857940All users of the following (and possibly earlier) versions of Panda security products for Windows are vulnerable to a local privilege escalation which allows a local attacker to elevate privileges from any account type and execute code as SYSTEM, thus obtaining full access over the compromised host.
bd05592c98a9bbeefe7ba5ee744232314670a99e8285c1dafadcf505cd119f51BSS Continuity CMS version 4.2.22640.0 suffers from a remote blind SQL injection vulnerability.
43feb3cbd99eaefa88765c3c9103eabad8285af84513ee137eec680d6360a86eBSS Continuity CMS version 4.2.22640.0 suffers from a denial of service vulnerability.
d7e9e0e3d9e9e78fbf9acded3c17d9c2499a49a7fd4828f158617351e69206d1BSS Continuity CMS version 4.2.22640.0 suffers from a remote code execution vulnerability via an unauthenticated file upload.
f64096d831fab8b5daddf9da0cef7ef566ab842ef369e375cbf0cbd1cc51fd22BSS Continuity CMS version4.2.22640.0 suffers from a direct access bypass vulnerability.
e3ab30109477b8b881798256ebec26615cccca5ae9a61b5ba335a7b9e3e124c4DIR-605L suffers from password disclosure and authentication bypass vulnerabilities.
34ebc0a7494b884a027be858fbef805a053014d262af42c2fac420268583749fArtikel CMS suffers from a cross site scripting vulnerability. Note that this finding houses site-specific data.
29b2e71cf0e6d4b0890cf06eccdc9b57dff712a333e877aaf3ad3f221e394afeClassAd suffers from a cross site scripting vulnerability. Note that this finding houses site-specific data.
02a2c0b255ff4254797f868e19ff5ad1d09521aa1ffc45f92f2aa33e8a00bbefSites using Flying Cart suffer from a cross site scripting vulnerability. Note that this finding houses site-specific data.
94e71e6c1f57749ac86022d71ebb2690578d7642017877347bfa8c2e2f9cfb4eDebian Linux Security Advisory 2934-1 - Several vulnerabilities were discovered in Django, a high-level Python web development framework.
f3cac867348584be5c7e3a98278d62b519f5059a1407c982fa0160a95cfab217Debian Linux Security Advisory 2933-1 - Several vulnerabilities were discovered in qemu-kvm, a full virtualization solution on x86 hardware.
4609c037e37dde4bff9f2e2e89d521f16f72c77707b5de202ee9ad47dad1558aRed Hat Security Advisory 2014-0520-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. A flaw was found in the way the Linux kernel processed an authenticated COOKIE_ECHO chunk during the initialization of an SCTP connection. A remote attacker could use this flaw to crash the system by initiating a specially crafted SCTP handshake in order to trigger a NULL pointer dereference on the system. A race condition flaw, leading to heap-based buffer overflows, was found in the way the Linux kernel's N_TTY line discipline implementation handled concurrent processing of echo output and TTY write operations originating from user space when the underlying TTY driver was PTY. An unprivileged, local user could use this flaw to crash the system or, potentially, escalate their privileges on the system.
cf3230577c1120f15292cc4b5ce4d76ea79c82dfeeb2391d814a2ba0d353662dRed Hat Security Advisory 2014-0522-01 - MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. This update fixes several vulnerabilities in the MariaDB database server. These updated packages upgrade MariaDB to version 5.5.37.
6c7b692716d4b3231366034b209f15ed6358a6cc0307d2637ae8cab01d54704dFTP Rush version 2.1.8 fails to validate X.509 certificates.
08db1ca6e7f0ad3753320343d94123a3e0682c3ebd85684834dbf71b50e8349d
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed