Twenty Year Anniversary
Showing 26 - 50 of 103,736 RSS Feed

Files

PHP-SHOP Master 1.0 Cross Site Request Forgery
Posted Oct 18, 2018
Authored by Alireza Norkazemi

PHP-SHOP Master version 1.0 suffers from a cross site request forgery vulnerability.

tags | exploit, php, csrf
MD5 | 8a78b5651bd99ac517bc63e491f64913
Learning With Texts 1.6.2 SQL Injection
Posted Oct 18, 2018
Authored by Ihsan Sencan

Learning with Texts version 1.6.2 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | e369d05342f296346bcb78320742e5e8
Time And Expense Management System 3.0 SQL Injection
Posted Oct 18, 2018
Authored by Ihsan Sencan

Time and Expense Management System version 3.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | a86c2de37553ce740ad519f2189592db
Microsoft Security Bulletin CVE Revision Increment For October, 2018
Posted Oct 18, 2018
Site microsoft.com

This Microsoft bulletin summary lists a CVE that has undergone a major revision increment.

tags | advisory
advisories | CVE-2018-3190
MD5 | a5d7f33da98d9ecacf9bdb120ede2b25
Zenar Content Management System 8.3 Cross Site Request Forgery
Posted Oct 18, 2018
Authored by Ismail Tasdelen

Zenar Content Management System version 8.3 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2018-18420
MD5 | 1ca21d4ea7dad9557ab0feb02503c410
User Management 1.1 Cross Site Scripting
Posted Oct 18, 2018
Authored by Ismail Tasdelen

User Management version 1.1 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-18419
MD5 | 1c7ef1551d6511f2e501320c44b58849
Red Hat Security Advisory 2018-2942-01
Posted Oct 18, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-2942-01 - The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Issues addressed include improper access controls.

tags | advisory, java
systems | linux, redhat
advisories | CVE-2018-3136, CVE-2018-3139, CVE-2018-3149, CVE-2018-3169, CVE-2018-3180, CVE-2018-3183, CVE-2018-3214
MD5 | 4d669cadc844d32d5b8e87a44dbba212
Red Hat Security Advisory 2018-2943-01
Posted Oct 18, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-2943-01 - The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Issues addressed include improper access checks.

tags | advisory, java
systems | linux, redhat
advisories | CVE-2018-3136, CVE-2018-3139, CVE-2018-3149, CVE-2018-3169, CVE-2018-3180, CVE-2018-3183, CVE-2018-3214
MD5 | 1a4266da7dcb32436f5115e0d947c3f1
Red Hat Security Advisory 2018-2939-01
Posted Oct 18, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-2939-01 - Red Hat Fuse Integration Services provides a set of tools and containerized xPaaS images that enable development, deployment, and management of integration microservices within OpenShift. Security fix: jackson-databind: incomplete fix for CVE-2017-7525 permits unsafe serialization via c3p0 libraries spring-framework: Address partial fix for CVE-2018-1270 Issues addressed include bypass, code execution, denial of service, and traversal vulnerabilities.

tags | advisory, denial of service, vulnerability, code execution
systems | linux, redhat
advisories | CVE-2017-12617, CVE-2018-1260, CVE-2018-1270, CVE-2018-1271, CVE-2018-1275, CVE-2018-1304, CVE-2018-1305, CVE-2018-1336, CVE-2018-7489
MD5 | a81bee41629f0971103daec531920d5c
Ubuntu Security Notice USN-3796-2
Posted Oct 18, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3796-2 - USN-3796-1 fixed a vulnerability in paramiko. This update provides the corresponding update for Ubuntu 12.04 ESM. Daniel Hoffman discovered that Paramiko incorrectly handled authentication when being used as a server. A remote attacker could use this issue to bypass authentication without any credentials. Various other issues were also addressed.

tags | advisory, remote
systems | linux, ubuntu
advisories | CVE-2018-1000805
MD5 | eeeaa8c000eef211a5eee310a1781232
WordPress Wordfence 7.1.12 XSS / Username Disclosure
Posted Oct 18, 2018
Authored by Janek Vind aka waraxe | Site waraxe.us

WordPress Wordfence plugin version 7.1.12 suffers from bypass, cross site scripting, and path disclosure vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | f85a44d7b6147f2f25a667a27e0309f9
D-Link Plain-Text Password Storage / Code Execution / Directory Traversal
Posted Oct 18, 2018
Authored by Blazej Adamczyk

Multiple D-Link router models suffer from code execution, plain-text password storage, and directory traversal vulnerabilities.

tags | exploit, vulnerability, code execution, file inclusion
advisories | CVE-2017-6190, CVE-2018-10822, CVE-2018-10823, CVE-2018-10824
MD5 | af2cd1ac0b397da3a62f3d04d972086c
TP-Link TL-SC3130 1.6.18 Unauthenticated RTSP Stream Disclosure
Posted Oct 17, 2018
Authored by LiquidWorm | Site zeroscience.mk

TP-Link TL-SC3130 version 1.6.18 suffers from an unauthenticated and unauthorized live RTSP stream disclosure.

tags | exploit
advisories | CVE-2018-18428
MD5 | e029e95c170246483700a76a5b7644d8
Ekushey Project Manager CRM 3.1 Cross Site Scripting
Posted Oct 17, 2018
Authored by Ismail Tasdelen

Ekushey Project Manager CRM version 3.1 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2018-18417
MD5 | 0b81df122dfedd99e1fcc0e7cbc76cad
LANGO Codeigniter Multilingual Script 1.0 Cross Site Scripting
Posted Oct 17, 2018
Authored by Ismail Tasdelen

LANGO Codeigniter Multilingual Script version 1.0 suffers from html injection and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
advisories | CVE-2018-18416
MD5 | 2964fdd5821fffe13a66f8562db17cfa
Dell EMC ESRS Virtual Edition Information Handling
Posted Oct 17, 2018
Authored by Dell Product Security Incident Response Team

Dell EMC Secure Remote Services Virtual Edition versions prior to 3.32.00.08 suffer from improper file permission, plaintext password storage, and information exposure vulnerabilities.

tags | advisory, remote, vulnerability
advisories | CVE-2018-11079, CVE-2018-11080, CVE-2018-15765
MD5 | 8f160751ece08d6712da5b33a8d87a36
Git Submodule Arbitrary Code Execution
Posted Oct 17, 2018
Authored by joernchen

This write up provides a proof of concept with technical details for the git submodule arbitrary code execution vulnerability.

tags | exploit, arbitrary, code execution, proof of concept
advisories | CVE-2018-17456
MD5 | 8b90c70cc560ce019f65408cbaa40ac8
Ubuntu Security Notice USN-3796-1
Posted Oct 17, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3796-1 - Daniel Hoffman discovered that Paramiko incorrectly handled authentication when being used as a server. A remote attacker could use this issue to bypass authentication without any credentials.

tags | advisory, remote
systems | linux, ubuntu
advisories | CVE-2018-1000805
MD5 | d5067a79d01993a7f40de7ec1a88689e
Ubuntu Security Notice USN-3795-1
Posted Oct 17, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3795-1 - Peter Winter-Smith discovered that libssh incorrectly handled authentication when being used as a server. A remote attacker could use this issue to bypass authentication without any credentials.

tags | advisory, remote
systems | linux, ubuntu
advisories | CVE-2018-10933
MD5 | 1dcc29f274ef1d151985494c2d04c5d4
Red Hat Security Advisory 2018-2938-01
Posted Oct 17, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-2938-01 - Red Hat OpenShift Application Runtimes provides an application platform that reduces the complexity of developing and operating applications for OpenShift as a containerized platform. This release of RHOAR Thorntail 2.2.0 serves as a replacement for RHOAR WildFly Swarm 7.1.0, and includes security and bug fixes and enhancements. For further information, refer to the release notes linked to in the References section. Issues addressed include a traversal vulnerability.

tags | advisory
systems | linux, redhat
advisories | CVE-2018-1047, CVE-2018-7489
MD5 | f2b8cd2a90e4cf90e18d17597f36476a
Red Hat Security Advisory 2018-2925-01
Posted Oct 17, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-2925-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include bypass, denial of service, and use-after-free vulnerabilities.

tags | advisory, denial of service, kernel, vulnerability
systems | linux, redhat
advisories | CVE-2018-10675, CVE-2018-14634, CVE-2018-5391
MD5 | b6a8bd1163aa820ea7c74585ab22776e
Ubuntu Security Notice USN-3789-2
Posted Oct 17, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3789-2 - USN-3789-1 fixed a vulnerability in ClamAV. This update provides the corresponding update for Ubuntu 12.04 ESM. It was discovered that ClamAV incorrectly handled unpacking MEW executables. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service. Various other issues were also addressed.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2018-14679, CVE-2018-15378
MD5 | fde2b8334433786ac95fc46db3f82541
Red Hat Security Advisory 2018-2933-01
Posted Oct 17, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-2933-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include denial of service and use-after-free vulnerabilities.

tags | advisory, denial of service, kernel, vulnerability
systems | linux, redhat
advisories | CVE-2018-10675, CVE-2018-14634, CVE-2018-5390, CVE-2018-5391
MD5 | a97ccc6aaeca9a83d1973ad6a2eed767
VMware Security Advisory 2018-0026
Posted Oct 17, 2018
Authored by VMware | Site vmware.com

VMware Security Advisory 2018-0026 - VMware ESXi, Workstation, and Fusion updates address an out-of- bounds read vulnerability.

tags | advisory
advisories | CVE-2018-6974
MD5 | 74edba10b62e5341c33bfb5f5e683ec4
Red Hat Security Advisory 2018-2930-01
Posted Oct 17, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-2930-01 - Red Hat JBoss Operations Network is a Middleware management solution that provides a single point of control to deploy, manage, and monitor JBoss Enterprise Middleware, applications, and services. This JBoss Operations Network 3.3.11 release serves as a replacement for JBoss Operations Network 3.3.10, and includes several bug fixes. Issues addressed include code execution, denial of service, and deserialization vulnerabilities.

tags | advisory, denial of service, vulnerability, code execution
systems | linux, redhat
advisories | CVE-2017-17485, CVE-2018-12533, CVE-2018-1336, CVE-2018-8088
MD5 | 7f44f8a54ec3fcefaa6f8a25aa193dba
Page 2 of 4,150
Back12345Next

File Archive:

October 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    26 Files
  • 2
    Oct 2nd
    15 Files
  • 3
    Oct 3rd
    15 Files
  • 4
    Oct 4th
    15 Files
  • 5
    Oct 5th
    15 Files
  • 6
    Oct 6th
    2 Files
  • 7
    Oct 7th
    3 Files
  • 8
    Oct 8th
    23 Files
  • 9
    Oct 9th
    16 Files
  • 10
    Oct 10th
    15 Files
  • 11
    Oct 11th
    19 Files
  • 12
    Oct 12th
    16 Files
  • 13
    Oct 13th
    2 Files
  • 14
    Oct 14th
    2 Files
  • 15
    Oct 15th
    15 Files
  • 16
    Oct 16th
    20 Files
  • 17
    Oct 17th
    19 Files
  • 18
    Oct 18th
    21 Files
  • 19
    Oct 19th
    16 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close