exploit the possibilities
Showing 26 - 50 of 111,683 RSS Feed

Files

Ubuntu Security Notice USN-4360-4
Posted May 28, 2020
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4360-4 - USN-4360-1 fixed a vulnerability in json-c. The security fix introduced a memory leak that was reverted in USN-4360-2 and USN-4360-3. This update provides the correct fix update for CVE-2020-12762. It was discovered that json-c incorrectly handled certain JSON files. An attacker could possibly use this issue to execute arbitrary code. Various other issues were also addressed.

tags | advisory, arbitrary, memory leak
systems | linux, ubuntu
advisories | CVE-2020-12762
MD5 | 86df77174f085c6a9d0da81563e1e73c
QNAP QTS And Photo Station 6.0.3 Remote Command Execution
Posted May 28, 2020
Authored by Yunus YILDIRIM

QNAP QTS and Photo Station version 6.0.3 suffers from a remote command execution vulnerability.

tags | exploit, remote
advisories | CVE-2019-7192, CVE-2019-7193, CVE-2019-7194, CVE-2019-7195
MD5 | afb5585d8c59cf2f3858a646d14474b6
Ubuntu Security Notice USN-4376-1
Posted May 28, 2020
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4376-1 - It was discovered that OpenSSL incorrectly handled ECDSA signatures. An attacker could possibly use this issue to perform a timing side-channel attack and recover private ECDSA keys. Matt Caswell discovered that OpenSSL incorrectly handled the random number generator. This may result in applications that use the fork system call sharing the same RNG state between the parent and the child, contrary to expectations. This issue only affected Ubuntu 18.04 LTS and Ubuntu 19.10.

tags | advisory
systems | linux, ubuntu
advisories | CVE-2019-1547, CVE-2019-1549, CVE-2019-1551, CVE-2019-1563
MD5 | f989c11ebb96bde96d6e47a9686c7190
Online-Exam-System 2015 SQL Injection
Posted May 28, 2020
Authored by Berk Dusunur

Online-Exam-System 2015 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 728c6650a920b4dabb57ddba0cea154a
Red Hat Security Advisory 2020-2332-01
Posted May 28, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-2332-01 - After May 31, 2020, as per the life-cycle support policy for Red Hat Satellite, Red Hat will discontinue technical support services as well as software maintenance services for all Red Hat Satellite and Proxy versions 5.8 or older on Red Hat Enterprise Linux 6.

tags | advisory
systems | linux, redhat
MD5 | ceddcd32a1e89267df6822a05cacafe6
EyouCMS 1.4.6 Cross Site Scripting
Posted May 28, 2020
Authored by CBIITMC

EyouCMS version 1.4.6 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | 50f5cb07b25e20f007f1276ea41730c0
Red Hat Security Advisory 2020-2331-01
Posted May 28, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-2331-01 - After May 31, 2020, as per the life-cycle support policy for Red Hat Satellite Proxy, Red Hat will discontinue technical support services as well as software maintenance services for all Red Hat Satellite and Proxy versions 5.8 or older on Red Hat Enterprise Linux 6.

tags | advisory
systems | linux, redhat
MD5 | 06693f18fed41c0ad6001d5e0245455c
NOKIA VitalSuite SPM 2020 SQL Injection
Posted May 28, 2020
Authored by Berk Dusunur

NOKIA VitalSuite SPM 2020 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | c09f87f64bc49a7edab3ed12057f5282
Red Hat Security Advisory 2020-2217-01
Posted May 28, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-2217-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. Issues addressed include a cross site scripting vulnerability.

tags | advisory, xss
systems | linux, redhat
advisories | CVE-2020-11022
MD5 | ab9d506d49a926654960fae222b4f536
Red Hat Security Advisory 2020-2218-01
Posted May 28, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-2218-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-1702
MD5 | 61069eb8d214a917fe5a39c786dcaec2
Ubuntu Security Notice USN-4375-1
Posted May 27, 2020
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4375-1 - It was discovered that PHP incorrectly handled certain files. An attacker could possibly use this issue to cause a denial of service.

tags | advisory, denial of service, php
systems | linux, ubuntu
advisories | CVE-2019-11048
MD5 | ac90635f0db37791117aaebd12e9e72c
osTicket 1.14.1 Cross Site Scripting
Posted May 27, 2020
Authored by Matthew Aberegg

osTicket version 1.14.1 has been found to be susceptible to multiple additional persistent cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | c6f294bb3f9f376aebb5f75ee6d92fa5
LimeSurvey 4.1.11 Cross Site Scripting
Posted May 27, 2020
Authored by Matthew Aberegg

LimeSurvey version 4.1.11 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | 1a15187415c4aec92c406c616f07a180
Online Marriage Registration System 1.0 Cross Site Scripting
Posted May 27, 2020
Authored by that faceless coder

Online Marriage Registration System version 1.0 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | 09f191ba8331b5b17b93333c18cd6085
Kuicms PHP EE 2.0 Cross Site Scripting
Posted May 27, 2020
Authored by CBIITMC

Kuicms PHP EE version 2.0 suffers from a persistent cross site scripting vulnerability.

tags | exploit, php, xss
MD5 | 1ce0e2a58f4c205e0f768a130497d76c
Chameleon Mini Smartcard Emulator Iceman Fork Gray GUI 1.3
Posted May 27, 2020
Authored by Christian Herrmann | Site github.com

Firmware for the ChameleonMini RevE rebooted device. It compiles without errors or warnings and gives you more or less the same functionality as the stock firmware. This version compiles and gives you the same functionality (and more) as the original Chameleon Mini rebooted GUI.

Changes: This major release addresses support upload of dumps using drag and drop on tag slots, enables REVG / Tiny support, has bug fixes and more.
tags | tool
systems | unix
MD5 | 3d43a9f1ba2478ed54e79b168ab29c57
OpenSSH 8.3p1
Posted May 27, 2020
Authored by Damien Miller | Site openssh.com

This is a Linux/portable port of OpenBSD's excellent OpenSSH. OpenSSH is based on the last free version of Tatu Ylonen's SSH with all patent-encumbered algorithms removed, all known security bugs fixed, new features reintroduced, and many other clean-ups.

Changes: Deprecation of SHA-1 use. Various other bug fixes and updates.
tags | tool, encryption
systems | linux, unix, openbsd
MD5 | 68d7527bf2672153ca47402f6489a1af
Ubuntu Security Notice USN-4374-1
Posted May 27, 2020
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4374-1 - Lior Shafir, Yehuda Afek, and Anat Bremler-Barr discovered that Unbound incorrectly handled certain queries. A remote attacker could use this issue to perform an amplification attack directed at a target. It was discovered that Unbound incorrectly handled certain malformed answers. A remote attacker could possibly use this issue to cause Unbound to crash, resulting in a denial of service.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2020-12662, CVE-2020-12663
MD5 | 65ac744979d6064e52c3b7c55bb2f20f
Pi-hole 4.4.0 Remote Code Execution
Posted May 27, 2020
Authored by Photubias

Pi-hole version 4.4.0 suffers from a remote code execution vulnerability.

tags | exploit, remote, code execution
advisories | CVE-2020-11108
MD5 | b5850c62bfcb5f5502dd24e3e1620efc
StreamRipper32 2.6 Buffer Overflow
Posted May 27, 2020
Authored by Andy Bowden

StreamRipper32 version 2.6 buffer overflow proof of concept exploit.

tags | exploit, overflow, proof of concept
MD5 | 47700ed189e5e931e2dc1b81afec092e
WordPress Drag And Drop File Upload Contact Form 1.3.3.2 Shell Upload
Posted May 27, 2020
Authored by Austin Martin

WordPress Drag and Drop File Upload Contact Form plugin version 1.3.3.2 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell, file upload
MD5 | 415c8b9b89531c519f109fc5a2a6d49f
BIND TSIG Denial Of Service
Posted May 27, 2020
Authored by Teppei Fukuda

BIND TSIG denial of service exploit.

tags | exploit, denial of service
advisories | CVE-2020-8617
MD5 | e51df7d7af4c4c6758585060581d38b8
OXID eShop 6.3.4 SQL Injection
Posted May 27, 2020
Authored by VulnSpy

OXID eShop version 6.3.4 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 28541affd459b4b74d9aac4d6f2183af
Red Hat Security Advisory 2020-2321-01
Posted May 26, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-2321-01 - Red Hat Data Grid is a distributed, in-memory, NoSQL datastore based on the Infinispan project. This release of Red Hat Data Grid 7.3.6 serves as a replacement for Red Hat Data Grid 7.3.5 and includes bug fixes and enhancements, which are described in the Release Notes, linked to in the References section of this erratum. Issues addressed include HTTP request smuggling, cross site scripting, out of bounds read, and traversal vulnerabilities.

tags | advisory, web, vulnerability, xss
systems | linux, redhat
advisories | CVE-2018-10862, CVE-2019-0205, CVE-2019-0210, CVE-2019-10086, CVE-2019-10219, CVE-2019-14540, CVE-2019-16869, CVE-2019-16942, CVE-2019-16943, CVE-2019-17267, CVE-2019-20444, CVE-2019-20445, CVE-2020-7238
MD5 | e68f4eb5689fda743d06e6ca00ead832
Red Hat Security Advisory 2020-2320-01
Posted May 26, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-2320-01 - The jackson-databind package provides general data-binding functionality for Jackson, which works on top of Jackson core streaming API.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-11619, CVE-2020-11620
MD5 | a1438eb123a5696b2756ac4ad0679b28
Page 2 of 4,468
Back12345Next

File Archive:

May 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    14 Files
  • 2
    May 2nd
    3 Files
  • 3
    May 3rd
    1 Files
  • 4
    May 4th
    18 Files
  • 5
    May 5th
    15 Files
  • 6
    May 6th
    21 Files
  • 7
    May 7th
    15 Files
  • 8
    May 8th
    19 Files
  • 9
    May 9th
    1 Files
  • 10
    May 10th
    2 Files
  • 11
    May 11th
    18 Files
  • 12
    May 12th
    39 Files
  • 13
    May 13th
    15 Files
  • 14
    May 14th
    17 Files
  • 15
    May 15th
    17 Files
  • 16
    May 16th
    2 Files
  • 17
    May 17th
    2 Files
  • 18
    May 18th
    15 Files
  • 19
    May 19th
    21 Files
  • 20
    May 20th
    15 Files
  • 21
    May 21st
    15 Files
  • 22
    May 22nd
    6 Files
  • 23
    May 23rd
    1 Files
  • 24
    May 24th
    1 Files
  • 25
    May 25th
    2 Files
  • 26
    May 26th
    23 Files
  • 27
    May 27th
    13 Files
  • 28
    May 28th
    18 Files
  • 29
    May 29th
    17 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close