exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 20 of 20 RSS Feed

Files Date: 2017-09-07 to 2017-09-08

Apache Struts 2.5.12 XStream Remote Code Execution
Posted Sep 7, 2017
Authored by Warflop

Apache Struts versions 2.5 through 2.5.12 REST plugin XStream remote code execution exploit.

tags | exploit, remote, code execution
advisories | CVE-2017-9805
SHA-256 | 5eefb225f4d65b10a8f7ab5d82a391bc22c225f2af56069b5ef63bc964f11659
Jungo DriverWizard WinDrive Overflow
Posted Sep 7, 2017
Authored by mr_me

Jungo DriverWizard WinDrive suffers from a kernel pool overflow vulnerability.

tags | exploit, overflow, kernel
advisories | CVE-2017-14153
SHA-256 | dca515772a97244268c6a74660ac805849667ca4797270d13edabd00dd2a3754
Jungo DriverWizard WinDrive OOB Write Privilege Escalation
Posted Sep 7, 2017
Authored by mr_me

Jungo DriverWizard WinDriver suffers from a kernel out-of-bounds write privilege escalation vulnerability.

tags | exploit, kernel
advisories | CVE-2017-14075
SHA-256 | 3f35127cf2e468c00ca30d9820ac92892af0f635d478118670c971a69fe4071b
Pay Banner Text Link Ad 1.0.6.1 Cross Site Request Forgery
Posted Sep 7, 2017
Authored by Ihsan Sencan

Pay Banner Text Link Ad version 1.0.6.1 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
SHA-256 | 9b082938168d71c07b379d740fe7e44bcbd3aa154ee77ef3959620c37c3ba940
Pay Banner Text Link Ad 1.0.6.1 SQL Injection
Posted Sep 7, 2017
Authored by Ihsan Sencan

Pay Banner Text Link Ad version 1.0.6.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 7655b23fd5f7bbd6de0c9efd18d8b29e116fa62e79ce0a850c5f80bd45bdb0fe
Tor Linux Sandbox Breakout Via X11
Posted Sep 7, 2017
Authored by Jann Horn, Google Security Research

It appears that you can still talk to X11 outside of the Tor sandbox.

tags | exploit
SHA-256 | 4c74b825d9915b9cc074df48d3f4271e40284d7921ed32acb27be0ca67936611
IWEBSOUL CMS 1.0 SQL Injection
Posted Sep 7, 2017
Authored by Renzi

IWEBSOUL CMS version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
SHA-256 | 279f6a68f97865d9b1e02a9e64e3562399f5ad05334f727efe3b28c967e80167
IWEBSOUL CMS 1.0 Cross Site Scripting
Posted Sep 7, 2017
Authored by Renzi

IWEBSOUL CMS version 1.0 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
SHA-256 | 5b8f2032ccbae5827e76068dc3109d226803f97af704bce3873a645659d43af1
SourceTree Remote Code Execution
Posted Sep 7, 2017
Authored by David Black | Site atlassian.com

SourceTree suffers from multiple remote code execution vulnerabilities that can be triggered via hostile repositories being checked in. SourceTree for macOS versions prior to 2.6.1 and SourceTree for Windows versions prior to 2.1.10 are affected.

tags | advisory, remote, vulnerability, code execution
systems | windows
advisories | CVE-2017-1000115, CVE-2017-1000116, CVE-2017-1000117, CVE-2017-9800
SHA-256 | 1e50b9884995c5b9c544b4aa24ba0de7ea8f777b919770ce1a23e318b7d2c761
Apache Struts 2 REST Plugin XStream Remote Code Execution
Posted Sep 7, 2017
Authored by wvu, Man Yue Mo | Site metasploit.com

Apache Struts versions 2.5 through 2.5.12 using the REST plugin are vulnerable to a Java deserialization attack in the XStream library.

tags | exploit, java
advisories | CVE-2017-9805
SHA-256 | 733707ff1693492ed26a3fc45635dfec661cbb6f0cba034160e94e43f171f6b9
Debian Security Advisory 3965-1
Posted Sep 7, 2017
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3965-1 - Thomas Jarosch discovered a stack-based buffer overflow flaw in file, a file type classification tool, which may result in denial of service if an ELF binary with a specially crafted .notes section is processed.

tags | advisory, denial of service, overflow
systems | linux, debian
advisories | CVE-2017-1000249
SHA-256 | 208bd0ad3f0a04225cfdb465a951a0ab7661c6d10de3de696ca9230e140ce737
HPE Security Bulletin HPESBUX03772 1
Posted Sep 7, 2017
Authored by Hewlett Packard Enterprise | Site hpe.com

HPE Security Bulletin HPESBUX03772 1 - Potential security vulnerabilities have been identified in the HP-UX BIND service running named. These vulnerabilities could be exploited remotely to allow Denial of Service (DoS), and unauthorized read access to data. Revision 1 of this advisory.

tags | advisory, denial of service, vulnerability
systems | hpux
advisories | CVE-2017-3140, CVE-2017-3142, CVE-2017-3143
SHA-256 | d052d1d36421886aa892f783d7c2fcc936d36c83861414f591ccae68affbfb54
PlugX Controller Stack Overflow
Posted Sep 7, 2017
Authored by Professor Plum | Site metasploit.com

This Metasploit module exploits a Stack buffer overflow in the PlugX Controller (C2 server).

tags | exploit, overflow
SHA-256 | fab15afd2976d0be434516dfbbdab177044e07c28c888d30d6356b8b4d9dd1c9
Gh0st Client Buffer Overflow
Posted Sep 7, 2017
Authored by Professor Plum | Site metasploit.com

This Metasploit module exploits a Memory buffer overflow in the Gh0st client (C2 server).

tags | exploit, overflow
SHA-256 | 695f80c69c1d2f0ca424466209a152c3c64547c840a93ad44a2685d0d401237f
Cory Support SQL Injection
Posted Sep 7, 2017
Authored by v3n0m

Cory Support suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | aefc544f009549ab72af6692287d3a29530348409800e9745998f9d303c80b74
Advertiz PHP Script 0.2 Cross Site Request Forgery
Posted Sep 7, 2017
Authored by Ihsan Sencan

Advertiz PHP Script version 0.2 suffers from a cross site request forgery vulnerability.

tags | exploit, php, csrf
SHA-256 | 03ac89adc7fe8eec6d12bcc421671816ad8f4179f3dc7fe10e5b0948c02f316f
WordPress Contact Form 7 International SMS Integration 1.2 XSS
Posted Sep 7, 2017
Authored by M.R.S.L.Y

WordPress Contact Form 7 International SMS Integration plugin version 1.2 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | c84b88e2a7022b3b6e532043b31f3a755cdefa698c65b43b7290b31dad56ae32
WordPress Cool Flickr Slideshow 1.0 Cross Site Scripting
Posted Sep 7, 2017
Authored by M.R.S.L.Y

WordPress Cool Flickr Slideshow plugin version 1.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 0e4c3504ce086eee16bc884a945133f2176627adb0b50a82f867d4dc3b243697
Subrion CMS 4.1.5 Cross Site Scripting
Posted Sep 7, 2017
Authored by M.R.S.L.Y

Subrion CMS version 4.1.5 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | e557f936ad3f48f25ce65b7a23a288e678940f4b776a0d4d7c80ba6c95d58a21
Brutus FTP Attack Tool 0.3
Posted Sep 7, 2017
Authored by Phillip Aaron | Site bushisecurity.com

Brutus is a small threaded python FTP brute-force and dictionary attack tool. It supports several brute-force parameters such as a custom character sets, password length, minimum password length, prefix, and postfix strings to passwords generated.

tags | tool, cracker, python
SHA-256 | 40ebf6ba69965e9808d786f10070c9a7f2f6fc99257bf7e16187b622613091c8
Page 1 of 1
Back1Next

File Archive:

March 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    16 Files
  • 2
    Mar 2nd
    0 Files
  • 3
    Mar 3rd
    0 Files
  • 4
    Mar 4th
    32 Files
  • 5
    Mar 5th
    28 Files
  • 6
    Mar 6th
    42 Files
  • 7
    Mar 7th
    17 Files
  • 8
    Mar 8th
    13 Files
  • 9
    Mar 9th
    0 Files
  • 10
    Mar 10th
    0 Files
  • 11
    Mar 11th
    15 Files
  • 12
    Mar 12th
    19 Files
  • 13
    Mar 13th
    21 Files
  • 14
    Mar 14th
    38 Files
  • 15
    Mar 15th
    15 Files
  • 16
    Mar 16th
    0 Files
  • 17
    Mar 17th
    0 Files
  • 18
    Mar 18th
    10 Files
  • 19
    Mar 19th
    0 Files
  • 20
    Mar 20th
    0 Files
  • 21
    Mar 21st
    0 Files
  • 22
    Mar 22nd
    0 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    0 Files
  • 26
    Mar 26th
    0 Files
  • 27
    Mar 27th
    0 Files
  • 28
    Mar 28th
    0 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close