Twenty Year Anniversary
Showing 51 - 75 of 104,250 RSS Feed

Files

Rmedia SMS 1.0 SQL Injection
Posted Nov 15, 2018
Authored by Ihsan Sencan

Rmedia SMS version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 69b61489537815a9bc0f6f3b834adfe3
Debian Security Advisory 4339-1
Posted Nov 15, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4339-1 - Multiple vulnerabilities were discovered in Ceph, a distributed storage replay attacks and calculated signatures incorrectly, "ceph mon" did not validate capabilities for pool operations (resulting in potential corruption or deletion of snapshot images) and a format string vulnerability in libradosstriper could result in denial of service.

tags | advisory, denial of service, vulnerability
systems | linux, debian
advisories | CVE-2017-7519, CVE-2018-1086, CVE-2018-1128, CVE-2018-1129
MD5 | 7d33268d994527eabee05d8428f919cb
VMware Security Advisory 2018-0028
Posted Nov 15, 2018
Authored by VMware | Site vmware.com

VMware Security Advisory 2018-0028 - VMware vRealize Log Insight updates address an authorization bypass vulnerability.

tags | advisory, bypass
advisories | CVE-2018-6980
MD5 | 2f99ece85e71d427276816027fbcb32e
The Powerful Resource Of PHP Stream Wrappers
Posted Nov 15, 2018
Authored by Netsparker

In this article, the author explores ways to bypass protection methods using the PHP Stream Wrappers, which are responsible for handling protocol related tasks like downloading data from a web or ftp server and exposing it in a way in that it can be handled with PHP's stream related functions.

tags | paper, web, php, protocol
MD5 | a947e8c1cb30f07e7cee7d234092661e
Notepad3 1.0.2.350 Denial Of Service
Posted Nov 15, 2018
Authored by Ihsan Sencan

Notepad3 version 1.0.2.350 suffers from a denial of service vulnerability.

tags | exploit, denial of service
MD5 | cc2e1400dc9c8cc01e4c98b83443c900
Bosch Video Management System 8.0 Denial Of Service
Posted Nov 15, 2018
Authored by Daniel

Bosch Video Management System version 8.0 suffers from a denial of service vulnerability.

tags | exploit, denial of service
MD5 | c64d359d394005dfe72e150b6b1393cc
AMPPS 2.7 Denial Of Service
Posted Nov 15, 2018
Authored by Ihsan Sencan

AMPPS version 2.7 suffers from a denial of service vulnerability.

tags | exploit, denial of service
MD5 | 5a662a2e27f5bddb9aaddc384334645e
ntpd 4.2.8p10 Out-Of-Bounds Read
Posted Nov 15, 2018
Authored by Magnus Klaaborg Stubman

ntpd version 4.2.8p10 out-of-bounds read proof of concept exploit.

tags | exploit, proof of concept
advisories | CVE-2018-7182
MD5 | a3796c56972d661561564cb59bda9084
PHP 5.2.3 imap_open Bypass
Posted Nov 15, 2018
Authored by Anton Lopanitsyn

PHP version 5.2.3 (Debian) suffers from an imap imap_open disable functions bypass vulnerability.

tags | exploit, php, imap, bypass
systems | linux, debian
MD5 | aa9bfde85a72aab2622a5ce32e492d2a
EdTv 2 SQL Injection
Posted Nov 15, 2018
Authored by Ihsan Sencan

EdTv version 2 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | e966aab7a8fdd341d84896fcf2babdae
Electricks eCommerce 1.0 Cross Site Request Forgery
Posted Nov 15, 2018
Authored by Nawaf Alkeraithe

Electricks eCommerce version 1.0 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
MD5 | bcbec16be799a5e30c3796e451952ee6
Helpdezk 1.1.1 SQL Injection
Posted Nov 15, 2018
Authored by Ihsan Sencan

Helpdezk version 1.1.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 9665621c8f06fb02864833dbae7f9d1a
iServiceOnline 1.0 SQL Injection
Posted Nov 15, 2018
Authored by Ihsan Sencan

iServiceOnline version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 2c873210bdc05287e1551418ab2db6af
Atlassian Jira Authenticated Upload Code Execution
Posted Nov 14, 2018
Authored by Alexander Gonzalez | Site metasploit.com

This Metasploit module can be used to execute a payload on Atlassian Jira via the Universal Plugin Manager(UPM). The module requires valid login credentials to an account that has access to the plugin manager. The payload is uploaded as a JAR archive containing a servlet using a POST request against the UPM component. The check command will test the validity of user supplied credentials and test for access to the plugin manager.

tags | exploit
MD5 | cf80c47ca31e937db6c99f242138638c
Ubuntu Security Notice USN-3817-1
Posted Nov 14, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3817-1 - It was discovered that Python incorrectly handled large amounts of data. A remote attacker could use this issue to cause Python to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 14.04 LTS and Ubuntu 16.04 LTS. It was discovered that Python incorrectly handled running external commands in the shutil module. A remote attacker could use this issue to cause Python to crash, resulting in a denial of service, or possibly execute arbitrary code. Various other issues were also addressed.

tags | advisory, remote, denial of service, arbitrary, python
systems | linux, ubuntu
advisories | CVE-2018-1000030, CVE-2018-1000802, CVE-2018-14647
MD5 | bda0cfe521f33d1b63239f522962f9bd
SwitchVPN For MacOS / Windows 2.1012.03 Man-In-The-Middle
Posted Nov 14, 2018
Authored by Bernd Leitner

SwitchVPN for MacOS and Windows version 2.1012.03 suffers from a man-in-the-middle vulnerability.

tags | exploit
systems | windows
MD5 | 153eca5a67151dfcc54cf29537fdf8d8
Microsoft Security Advisory Update CVE Addition
Posted Nov 14, 2018
Site microsoft.com

This Microsoft bulletin summary lists a new CVE that has been added to the November advisory.

tags | advisory
advisories | CVE-2018-8529
MD5 | 028ffe1734d1def1f3922da99ade75ba
Red Hat Security Advisory 2018-3601-01
Posted Nov 14, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-3601-01 - OpenStack Block Storage manages block storage mounting and the presentation of such mounted block storage to instances. The backend physical storage can consist of local disks, or Fiber Channel, iSCSI, and NFS mounts attached to Compute nodes. Issues addressed include a failure to delete data.

tags | advisory, local
systems | linux, redhat
advisories | CVE-2017-15139
MD5 | f5ed118fdc0a9adac8fd4edb6a26fd32
OCS Inventory NG ocsreports Shell Upload
Posted Nov 14, 2018
Authored by Simon Uvarov

OCS Inventory NG suffers from an ocsreports authenticated remote code execution vulnerability via a shell upload.

tags | exploit, remote, shell, code execution
advisories | CVE-2018-15537
MD5 | cdb899f87fd086c3c20bd02fe32b2495
Red Hat Security Advisory 2018-3600-01
Posted Nov 14, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-3600-01 - The python-cryptography packages contain a Python Cryptographic Authority's cryptography library, which provides cryptographic primitives and recipes to Python developers. Issues addressed include a tag forgery vulnerability.

tags | advisory, python
systems | linux, redhat
advisories | CVE-2018-10903
MD5 | a79c131ad67e1fec236a2fb4689f7047
Alive Parish 2.0.4 File Upload / SQL Injection
Posted Nov 14, 2018
Authored by Ihsan Sencan

Alive Parish version 2.0.4 suffers from remote file upload and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection, file upload
MD5 | d2b89a0fba49d3310072b02564c19b23
Maitra Mail Tracking System 1.7.2 SQL Injection / Database File Download
Posted Nov 14, 2018
Authored by Ihsan Sencan

Maitra Mail Tracking System version 1.7.2 suffers from remote SQL injection and database file download vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
MD5 | 86aba8317aa0330247caef28b3a1085e
Microsoft Security Update Summary For November 13, 2018
Posted Nov 14, 2018
Site microsoft.com

This Microsoft summary lists Microsoft security updates released for November 13, 2018.

tags | advisory
MD5 | 3c58076581e35e0c6653b47e13026c27
Microsoft Security Advisory Updates For November 13, 2018
Posted Nov 14, 2018
Site microsoft.com

This Microsoft advisory notification includes advisories released or updated on November 13, 2018.

tags | advisory
MD5 | ab2b6a3b5c94db84e6fb92d37be5fbd1
SIPve 0.0.2-R19 SQL Injection
Posted Nov 14, 2018
Authored by Ihsan Sencan

SIPve version 0.0.2-R19 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | a352d2c6c1b7eb37ff5d978338811fe6
Page 3 of 4,170
Back12345Next

File Archive:

November 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    10 Files
  • 2
    Nov 2nd
    15 Files
  • 3
    Nov 3rd
    2 Files
  • 4
    Nov 4th
    2 Files
  • 5
    Nov 5th
    32 Files
  • 6
    Nov 6th
    27 Files
  • 7
    Nov 7th
    8 Files
  • 8
    Nov 8th
    9 Files
  • 9
    Nov 9th
    17 Files
  • 10
    Nov 10th
    2 Files
  • 11
    Nov 11th
    2 Files
  • 12
    Nov 12th
    33 Files
  • 13
    Nov 13th
    29 Files
  • 14
    Nov 14th
    23 Files
  • 15
    Nov 15th
    45 Files
  • 16
    Nov 16th
    11 Files
  • 17
    Nov 17th
    1 Files
  • 18
    Nov 18th
    1 Files
  • 19
    Nov 19th
    3 Files
  • 20
    Nov 20th
    2 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close