Showing 1 - 6 of 6

Files Date: 2023-03-22 to 2023-03-23

Ubuntu Security Notice USN-5968-1: Posted Mar 22, 2023; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 5968-1 - It was discovered that GitPython did not properly sanitize user inputs for remote URLs in the clone command. By injecting a maliciously crafted remote URL, an attacker could possibly use this issue to execute arbitrary commands on the host.; tags | advisory, remote, arbitrary; systems | linux, ubuntu; advisories | CVE-2022-24439; SHA-256 | 8f3a54575d7096992b3d3c81d82c2304712210afd399ea0e5c2c33f7df845437; Download | Favorite | View

Zyxel Unauthenticated LAN Remote Code Execution: Posted Mar 22, 2023; Authored by Stefan Viehboeck, T. Weber, Gerhard Hechenberger, Steffen Robertz | Site metasploit.com; This Metasploit module exploits a buffer overflow in the zhttpd binary (/bin/zhttpd). It is present on more than 40 Zyxel routers and CPE devices. The code execution vulnerability can only be exploited by an attacker if the zhttp webserver is reachable. No authentication is required. After exploitation, an attacker will be able to execute any command as root, including downloading and executing a binary from another host.; tags | exploit, overflow, root, code execution; SHA-256 | fc9419af3871336277cafde42125966d876812e4e57c8b48da3a83050219381f; Download | Favorite | View

MyBB Export User 2.0 Cross Site Scripting: Posted Mar 22, 2023; Authored by 0xB9; MyBB Export User plugin version 2.0 suffers from a cross site scripting vulnerability.; tags | exploit, xss; advisories | CVE-2023-27890; SHA-256 | 0f727d240d596072a9f1163413ddf43f29204849be9ee9b048371ea0547009e6; Download | Favorite | View

WCC 2023 Call For Participation: Posted Mar 22, 2023; Authored by WorldCryptologicCompetition | Site worldcryptologiccompetition.github.io; The World Cryptologic Competition (WCC) 2023 is a fully-online and open competition using GitHub. The language of the competition is English. The WCC 2023 has a total duration of 295 days, from Sunday January 1st 2023 to Monday October 23rd 2023. Teams and Judges must complete registration before Wednesday June 1st.; tags | paper, conference; SHA-256 | 12848db5eecde474ede8125eed53f5c8e8e8198f50e1cd86053ead35891713eb; Download | Favorite | View

Python CGI Documentation Cross Site Scripting: Posted Mar 22, 2023; Authored by Georgi Guninski; The documentation for the python CGI module suffers from a cross site scripting vulnerability.; tags | exploit, cgi, xss, python; SHA-256 | 12070a3cded8397a9c1036c6ffa17c97d5ef5a584b91e3216867995ff23654e8; Download | Favorite | View

OpenSSL Security Advisory 20230322: Posted Mar 22, 2023; Site openssl.org; OpenSSL Security Advisory 20230322 - A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that include policy constraints. Attackers may be able to exploit this vulnerability by creating a malicious certificate chain that triggers exponential use of computational resources, leading to a denial-of-service (DoS) attack on affected systems.; tags | advisory; advisories | CVE-2023-0464; SHA-256 | 7b03359b9fc8f357f8b0fd5e0e7a05a04c2c8ac49b1018bb2ee2e59b2b1927b3; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days