Exploit the possiblities
Showing 1 - 25 of 330 RSS Feed

Files Date: 2017-07-01 to 2017-07-31

Nosefart 2.9-mis Denial Of Service
Posted Jul 30, 2017
Authored by qflb.wu

Nosefart version 2.9-mis suffers from a denial of service vulnerability.

tags | exploit, denial of service
MD5 | 1d13dd4bfc98fccfebbf2cb2e8420041
OpenExif 2.1.4 Denial Of Service
Posted Jul 30, 2017
Authored by qflb.wu

The ExifJpegHUFFTable::deriveTable function in src/ExifHuffmanTable.cpp in OpenExif version 2.1.4 can cause a denial of service (heap buffer overflow and application crash) via a crafted jpg file.

tags | exploit, denial of service, overflow
MD5 | b2e464c621fd9a9a311ec5091118e084
Links 2.14 Denial Of Service
Posted Jul 30, 2017
Authored by qflb.wu

The put_chars function in html_r.c in Links version 2.14 can cause a denial of service (buffer over-read) via a crafted html file.

tags | exploit, denial of service
advisories | CVE-2017-11114
MD5 | 26a25c7e7eea1e220a37d23c2bc99cba
DiskBoss Enterprise 8.2.14 Buffer Overflow
Posted Jul 30, 2017
Authored by Ahmad Mahfouz

DiskBoss Enterprise version 8.2.14 suffers from a buffer overflow vulnerability.

tags | exploit, overflow
MD5 | 2a07a9a44e02243b6780cad28de923db
WordPress Logosware Suite Uploader 1.1.6 File Upload
Posted Jul 30, 2017
Authored by Shahab Shamsi

WordPress Logosware Suite Uploader plugin version 1.1.6 suffers from a remote file upload vulnerability.

tags | exploit, remote, file upload
MD5 | 2aa362f7e7612df23c47f6dd5f66e6e2
Jenkins Java Deserialization
Posted Jul 30, 2017
Authored by Janusz Piechowka

Jenkins versions prior to 1.650 suffer from a java deserialization vulnerability.

tags | exploit, java
advisories | CVE-2016-0792
MD5 | 508aa0bb9ab193653f65433a3ed020d0
Spider Player 2.5.3 DLL Hijacking
Posted Jul 29, 2017
Authored by Ye Yint Min Thu Htut

Spider Player version 2.5.3 suffers from a dll hijacking vulnerability.

tags | advisory
systems | windows
MD5 | af72530d6843a4b774d276db0bacc5c4
Flash Slideshow Maker Professional XSS / Content Forgery / Redirect
Posted Jul 29, 2017
Authored by ret2eax

Flash Slideshow Maker Professional suffers from content forgery, cross site scripting, and unvalidated redirection vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | c241b411c441ec7e0f4241ebd18bacfe
FTP Commander 8.02 DLL Hijacking
Posted Jul 29, 2017
Authored by Ye Yint Min Thu Htut

FTP Commander version 8.02 suffers from a dll hijacking vulnerability.

tags | advisory
systems | windows
MD5 | 7c3e0cb6cc1e25e5777d095f3a52b663
FortiOS 5.6.0 Cross Site Scripting
Posted Jul 28, 2017
Authored by Patryk Bogdan

FortiOS versions 5.6.0 and below suffer from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2017-3131, CVE-2017-3132, CVE-2017-3133
MD5 | 6afa609fab8f6ba22f68eb428c0d3a8f
Ubuntu Security Notice USN-3371-1
Posted Jul 28, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3371-1 - It was discovered that the Linux kernel did not properly initialize a Wake- on-Lan data structure. A local attacker could use this to expose sensitive information. Alexander Potapenko discovered a race condition in the Advanced Linux Sound Architecture subsystem in the Linux kernel. A local attacker could use this to expose sensitive information. Various other issues were also addressed.

tags | advisory, kernel, local
systems | linux, ubuntu
advisories | CVE-2014-9900, CVE-2017-1000380, CVE-2017-7346, CVE-2017-9605
MD5 | 5391562066bac61b8e2c8c8b2110eced
Vehicle Workshop SQL Injection
Posted Jul 28, 2017
Authored by Shahab Shamsi

Vehicle Workshop suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 931c6eb7277e3a1b1b6b4293c8617ee9
IBM Bluemix Broken Mutual TLS Authentication
Posted Jul 28, 2017
Authored by Oscar Martinez

IBM Bluemix suffers from a broken mutual TLS authentication vulnerability.

tags | advisory
MD5 | 855b313d6df245ff57d3c7e9016886c6
Suricata IDPE 4.0.0
Posted Jul 27, 2017
Site openinfosecfoundation.org

Suricata is a network intrusion detection and prevention engine developed by the Open Information Security Foundation and its supporting vendors. The engine is multi-threaded and has native IPv6 support. It's capable of loading existing Snort rules and signatures and supports the Barnyard and Barnyard2 tools.

Changes: Multiple bugs addressed and a couple of features added.
tags | tool, intrusion detection
systems | unix
MD5 | 41fb91b4cbc6705b353e4bdd02c3df4b
TYPO3 Formhandler 2.4.0 Cross Site Scripting
Posted Jul 27, 2017
Site redteam-pentesting.de

TYPO3 Formhandler version 2.4.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 6cfac9c84c886d0fc069fe4b25cb6045
Ubuntu Security Notice USN-3370-1
Posted Jul 27, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3370-1 - Robert Swiecki discovered that the Apache HTTP Server mod_auth_digest module incorrectly cleared values when processing certain requests. A remote attacker could use this issue to cause the server to crash, resulting in a denial or service, or possibly obtain sensitive information.

tags | advisory, remote, web
systems | linux, ubuntu
advisories | CVE-2017-9788
MD5 | 0351992c5c6292755bb3ff9a1fe16e1c
Ubuntu Security Notice USN-3369-1
Posted Jul 27, 2017
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3369-1 - Guido Vranken discovered that FreeRADIUS incorrectly handled memory when decoding packets. A remote attacker could use this issue to cause FreeRADIUS to crash or hang, resulting in a denial of service, or possibly execute arbitrary code.

tags | advisory, remote, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2017-10978, CVE-2017-10979, CVE-2017-10980, CVE-2017-10981, CVE-2017-10982, CVE-2017-10983, CVE-2017-10984, CVE-2017-10985, CVE-2017-10986, CVE-2017-10987
MD5 | c5dbb1add58a9a9ecbad68f218906843
Microsoft Security Bulletin CVE Update For July, 2017
Posted Jul 27, 2017
Site microsoft.com

This Microsoft bulletin summary lists multiple CVEs that have undergone a major revision increment.

tags | advisory
advisories | CVE-2017-8571, CVE-2017-8572, CVE-2017-8663
MD5 | c7609df1d0bcb1039bdc7939ff555614
Ubiquiti Networks UniFi Cloud Key Command Injection / Privilege Escalation
Posted Jul 27, 2017
Authored by T. Weber | Site sec-consult.com

Ubiquiti Networks UniFi Cloud Key with firmware versions 0.5.9 and 0.6.0 suffer from weak crypto, privilege escalation, and command injection vulnerabilities.

tags | exploit, crypto, vulnerability
MD5 | 9d9057dd1f6cb362de396bc65e582462
KATHREIN UFSconnect 916 / 906 DoS / Unauthenticated Actions
Posted Jul 27, 2017
Authored by T. Weber | Site sec-consult.com

KATHREIN UFSconnect 916 and 906 with firmware version 2.23 build 224 suffer from denial of service and unauthenticated access vulnerabilities.

tags | exploit, denial of service, vulnerability
MD5 | ca0531e9beaa5674b87dfd3a24c1b333
Friends In War Make Or Break 1.7 SQL Injection
Posted Jul 27, 2017
Authored by Ihsan Sencan

Friends in War Make or Break version 1.7 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | e8df9428d67775f61c7259affb58e5a5
Friends In War Make Or Break 1.7 Password Change
Posted Jul 27, 2017
Authored by shinnai

Friends in War Make or Break version 1.7 suffers from an unauthenticated administrative password change vulnerability.

tags | exploit
MD5 | 5427bf457a29587ce1e95a733a7678a5
FreeIPA 2.213 Session Hijacking
Posted Jul 27, 2017
Authored by Ricardo Sanchez

FreeIPA version 2.213 suffers from a session hijacking vulnerability.

tags | exploit
advisories | CVE-2017-11191
MD5 | e6a68b0a3016b7a375dddfbb0a0c460e
GNU libiberty Buffer Overflow
Posted Jul 27, 2017
Authored by Marcel Bohme

GNU libiberty suffers from a buffer overflow vulnerability.

tags | exploit, overflow
advisories | CVE-2016-2226
MD5 | 356b1eff3c6e0abd6ebfee8a0ac1e6c9
Friends In War Make Or Break 1.7 SQL Injection / Login Bypass
Posted Jul 27, 2017
Authored by Anarchy Angel

Friends in War Make or Break version 1.7 suffers from a remote SQL injection vulnerability that allows for login bypass.

tags | exploit, remote, sql injection, bypass
MD5 | 9e69d4ab1c94c51b9c7bc0dfe083c0cb
Page 1 of 14
Back12345Next

File Archive:

November 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    22 Files
  • 2
    Nov 2nd
    28 Files
  • 3
    Nov 3rd
    10 Files
  • 4
    Nov 4th
    1 Files
  • 5
    Nov 5th
    5 Files
  • 6
    Nov 6th
    15 Files
  • 7
    Nov 7th
    15 Files
  • 8
    Nov 8th
    13 Files
  • 9
    Nov 9th
    9 Files
  • 10
    Nov 10th
    9 Files
  • 11
    Nov 11th
    3 Files
  • 12
    Nov 12th
    2 Files
  • 13
    Nov 13th
    15 Files
  • 14
    Nov 14th
    17 Files
  • 15
    Nov 15th
    19 Files
  • 16
    Nov 16th
    15 Files
  • 17
    Nov 17th
    12 Files
  • 18
    Nov 18th
    0 Files
  • 19
    Nov 19th
    0 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close