Showing 1 - 10 of 10

Files Date: 2024-10-18 to 2024-10-19

Magento / Adobe Commerce Remote Code Execution: Posted Oct 18, 2024; Authored by Charles FOL, jheysel-r7, Heyder, Sergey Temnikov | Site metasploit.com; This Metasploit module uses a combination of an arbitrary file read (CVE-2024-34102) and a buffer overflow in glibc (CVE-2024-2961). It allows for unauthenticated remote code execution on various versions of Magento and Adobe Commerce (and earlier versions if the PHP and glibc versions are also vulnerable). Versions affected include 2.4.7 and earlier, 2.4.6-p5 and earlier, 2.4.5-p7 and earlier, and 2.4.4-p8 and earlier.; tags | exploit, remote, overflow, arbitrary, php, code execution; advisories | CVE-2024-2961, CVE-2024-34102; SHA-256 | f1b5cba01a5fd2ecef43b7a58280b21a88a3060e64cb2735247437f0ade78ff4; Download | Favorite | View

ABB Cylon Aspect 3.08.01 databaseFileDelete.php Command Injection: Posted Oct 18, 2024; Authored by LiquidWorm | Site zeroscience.mk; ABB Cylon Aspect version 3.08.01 suffers from an unauthenticated OS command injection vulnerability. This can be exploited to inject and execute arbitrary shell commands through the file HTTP POST parameter called by the databaseFileDelete.php script.; tags | exploit, web, arbitrary, shell, php; SHA-256 | cb2141122e64c71654606a390db65e7c398f5ec9a8b5883f4b4d4e29437c9eac; Download | Favorite | View

IBM Security Verify Access 10.0.8 Open Redirection: Posted Oct 18, 2024; Authored by Giulio Garzia; IBM Security Verify Access versions 10.0.0 through 10.0.8 suffer from an OAUTH related open redirection vulnerability.; tags | exploit; advisories | CVE-2024-35133; SHA-256 | a500a745e7c7c466abf142ddd6e71012e70518f4c0a88fbc922748f51623b6fb; Download | Favorite | View

Ubuntu Security Notice USN-7076-1: Posted Oct 18, 2024; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 7076-1 - Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.; tags | advisory, kernel; systems | linux, ubuntu; advisories | CVE-2024-27397; SHA-256 | 75a37cad45fa04414449a59d15d74bae4fcdac71f1d884b39d0f469fee75b15f; Download | Favorite | View

Ubuntu Security Notice USN-7074-1: Posted Oct 18, 2024; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 7074-1 - Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.; tags | advisory, kernel; systems | linux, ubuntu; advisories | CVE-2024-45001; SHA-256 | 3d3891df4038ae50767c7e0119f42726c76273dbb4ca44e116eec89bd005b3d6; Download | Favorite | View

Ubuntu Security Notice USN-7073-2: Posted Oct 18, 2024; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 7073-2 - Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.; tags | advisory, kernel; systems | linux, ubuntu; advisories | CVE-2024-26960; SHA-256 | fc4bba5376b41425014122bda093f3ca0b31ddf03a403f088d12c0efefaf7aae; Download | Favorite | View

Ubuntu Security Notice USN-7069-2: Posted Oct 18, 2024; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 7069-2 - Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.; tags | advisory, kernel; systems | linux, ubuntu; advisories | CVE-2023-52510, CVE-2024-26641, CVE-2024-26754, CVE-2024-27051, CVE-2024-27436, CVE-2024-31076, CVE-2024-38602, CVE-2024-38611, CVE-2024-38630, CVE-2024-39487, CVE-2024-40941, CVE-2024-41073, CVE-2024-42089, CVE-2024-42157; SHA-256 | 90a26949ae996a096f04ec182eabaa6418d7330bf22e8c98d14db5fb53c8975f; Download | Favorite | View

Ubuntu Security Notice USN-7028-2: Posted Oct 18, 2024; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 7028-2 - It was discovered that the JFS file system contained an out-of-bounds read vulnerability when printing xattr debug information. A local attacker could use this to cause a denial of service. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.; tags | advisory, denial of service, kernel, local; systems | linux, ubuntu; advisories | CVE-2021-47188, CVE-2022-48863, CVE-2023-52809, CVE-2024-26651, CVE-2024-26677, CVE-2024-26851, CVE-2024-27437, CVE-2024-38570, CVE-2024-38583, CVE-2024-39480, CVE-2024-39495, CVE-2024-42224; SHA-256 | 98691b52dc361923ae789d46853b1631bac1471d52e1e8f5c5bf3183938d9021; Download | Favorite | View

Ubuntu Security Notice USN-7059-2: Posted Oct 18, 2024; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 7059-2 - USN-7059-1 fixed a vulnerability in OATH Toolkit library. This update provides the corresponding update for Ubuntu 24.10. Fabian Vogt discovered that OATH Toolkit incorrectly handled file permissions. A remote attacker could possibly use this issue to overwrite root owned files, leading to a privilege escalation attack.; tags | advisory, remote, root; systems | linux, ubuntu; advisories | CVE-2024-47191; SHA-256 | a222adab927c20990f74c17c0d1c4297b96fae9882ffec61a1e854faccf9b026; Download | Favorite | View

Red Hat Security Advisory 2024-8116-03: Posted Oct 18, 2024; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2024-8116-03 - An update for java-1.8.0-openjdk is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Issues addressed include buffer overflow and integer overflow vulnerabilities.; tags | advisory, java, overflow, vulnerability; systems | linux, redhat; advisories | CVE-2023-48161; SHA-256 | 732d16b8012b7b71e251ab4230e7cac070ff5b1ccfdfbaa3aaff7788dfb741f9; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days