exploit the possibilities
Showing 51 - 75 of 114,889 RSS Feed

Files

CASAP Automated Enrollment System 1.0 Authentication Bypass
Posted Jan 22, 2021
Authored by Himanshu Shukla

CASAP Automated Enrollment System version 1.0 suffers from an authentication bypass vulnerability.

tags | exploit, bypass
MD5 | 535ea6fc08b41bb2412140d2c69c1c19
Selea Targa IP OCR-ANPR Camera Developer Backdoor Config Overwrite
Posted Jan 22, 2021
Authored by LiquidWorm | Site zeroscience.mk

Selea Targa IP OCR-ANPR Camera has a hard-coded password for a hidden and undocumented /dev.html page that enables the vendor to enable configuration upload / overwrite to the affected device using the checkManufacturer() function through an AJAX method. Multiple versions and firmwares are affected.

tags | exploit
MD5 | 214aebd00c61892818653846edb0adda
Selea Targa IP OCR-ANPR Camera Cross Site Scripting
Posted Jan 22, 2021
Authored by LiquidWorm | Site zeroscience.mk

Selea Targa IP OCR-ANPR Camera suffers from a persistent cross site scripting vulnerability. Multiple versions and firmwares are affected.

tags | exploit, xss
MD5 | c96a1da8081f5c2db7459923bd5b135f
Oracle WebLogic Server 14.1.1.0 Remote Code Execution
Posted Jan 22, 2021
Authored by Photubias

Oracle WebLogic Server version 14.1.1.0 authenticated remote code execution exploit.

tags | exploit, remote, code execution
advisories | CVE-2021-2109
MD5 | 25e9422281b5e82bb03523d889add28c
OATH Toolkit 2.6.6
Posted Jan 21, 2021
Site nongnu.org

OATH Toolkit attempts to collect several tools that are useful when deploying technologies related to OATH, such as HOTP one-time passwords. It is a fork of the earlier HOTP Toolkit.

Changes: HTTPS added to links. Fixed w3 links and images. More website fixes. Various other improvements.
tags | tool
systems | unix
MD5 | 7f236b591be20f8fac50752a9b66b084
Ubuntu Security Notice USN-4689-4
Posted Jan 21, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4689-4 - USN-4689-3 fixed vulnerabilities in the NVIDIA server graphics drivers. This update provides the corresponding updates for the NVIDIA Linux DKMS kernel modules. It was discovered that the NVIDIA GPU display driver for the Linux kernel contained a vulnerability that allowed user-mode clients to access legacy privileged APIs. A local attacker could use this to cause a denial of service or escalate privileges. Various other issues were also addressed.

tags | advisory, denial of service, kernel, local, vulnerability
systems | linux, ubuntu
advisories | CVE-2021-1052, CVE-2021-1053, CVE-2021-1056
MD5 | 67b7fedb3c56827c3051283598dae0b9
Simple JobBoard Authenticated File Read
Posted Jan 21, 2021
Authored by SunCSR, Hoa Nguyen, Arcangelo Saracino | Site metasploit.com

This Metasploit module exploits an authenticated directory traversal vulnerability in WordPress plugin Simple JobBoard versions prior to 2.9.3 to perform an arbitrary file read with the web server privileges.

tags | exploit, web, arbitrary
advisories | CVE-2020-35749
MD5 | f67aec0e1808a4048efded2042ded5a9
Backdoor.Win32.Xel Remote Authentication Buffer Overflow
Posted Jan 21, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Xel malware suffers from a remote authentication-related buffer overflow vulnerability.

tags | exploit, remote, overflow
systems | windows
MD5 | 86ce28c9e275557be43957e097c1a73a
Anchor CMS 0.12.7 Cross Site Request Forgery
Posted Jan 21, 2021
Authored by Ninad Mishra

Anchor CMS version 0.12.7 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2020-23342
MD5 | 531e88f62d5b3b0859e9fbe1287e363c
Backdoor.Win32.Verify.f Missing Authentication
Posted Jan 21, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Verify.f malware has backdoors running on TCP ports 1906 and 1907 that do not require any authentication.

tags | exploit, tcp
systems | windows
MD5 | ca8e4a026f7a8a413a34154343153445
Nagios XI 5.7.5 Cross Site Scripting
Posted Jan 21, 2021
Authored by Matthew Aberegg

Nagios XI version 5.7.5 suffers from multiple persistent cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 1ccaf139e2bb7184ac85d9e6f90a280b
Backdoor.Win32.WinShell.30 Remote Stack Buffer Overflow / Missing Authentication
Posted Jan 21, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.WinShell.30 malware suffers from remote stack buffer overflow and missing authentication vulnerabilities.

tags | exploit, remote, overflow, vulnerability
systems | windows
MD5 | 6b603f2efdd114008cbac8105f5cc6f7
Apartment Visitors Management System 1.0 SQL Injection
Posted Jan 21, 2021
Authored by Cankat Cakmak

Apartment Visitors Management System version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 0edbfc8d53295d9ce8a93390535f3dd9
Online Documents Sharing Platform 1.0 SQL Injection
Posted Jan 21, 2021
Authored by Cankat Cakmak

Online Documents Sharing Platform version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | bf5533f3d60deec8f36fa526ef08214b
Backdoor.Win32.Onalf Missing Authentication
Posted Jan 20, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Onalf malware has a backdoor running on TCP/2020 that does not require any authentication.

tags | exploit, tcp
systems | windows
MD5 | 8413023933171cccf3cf8f346fc00dc6
Backdoor.Win32.Zxman Missing Authentication
Posted Jan 20, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Zxman malware has a backdoor running on TCP/2048 that does not require any authentication.

tags | exploit, tcp
systems | windows
MD5 | e59d2f563516bdcc00be9a6bd0fe9c3e
Red Hat Security Advisory 2021-0079-01
Posted Jan 20, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0079-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 3.11.374. Issues addressed include crlf injection and man-in-the-middle vulnerabilities.

tags | advisory, vulnerability
systems | linux, redhat
advisories | CVE-2019-11840, CVE-2020-26137, CVE-2020-8554
MD5 | 889d390eab1057d92e07376a987128af
Ubuntu Security Notice USN-4697-2
Posted Jan 20, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4697-2 - USN-4697-1 fixed several vulnerabilities in Pillow. This update provides the corresponding update for Ubuntu 14.04 ESM. It was discovered that Pillow incorrectly handled certain PCX image files. If a user or automated system were tricked into opening a specially-crafted PCX file, a remote attacker could possibly cause Pillow to crash, resulting in a denial of service. Various other issues were also addressed.

tags | advisory, remote, denial of service, vulnerability
systems | linux, ubuntu
advisories | CVE-2020-10177, CVE-2020-35653
MD5 | 710757898267e7364668015c59fe295c
Ubuntu Security Notice USN-4689-3
Posted Jan 20, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4689-3 - It was discovered that the NVIDIA GPU display driver for the Linux kernel contained a vulnerability that allowed user-mode clients to access legacy privileged APIs. A local attacker could use this to cause a denial of service or escalate privileges. It was discovered that the NVIDIA GPU display driver for the Linux kernel did not properly validate a pointer received from userspace in some situations. A local attacker could use this to cause a denial of service. Various other issues were also addressed.

tags | advisory, denial of service, kernel, local
systems | linux, ubuntu
advisories | CVE-2021-1052, CVE-2021-1053, CVE-2021-1056
MD5 | 770df623c2eb7e3a6a906c87fae96947
Ubuntu Security Notice USN-4701-1
Posted Jan 20, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4701-1 - Multiple security issues were discovered in Thunderbird. If a user were tricked in to opening a specially crafted website in a browsing context, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information, bypass the CSS sanitizer, or execute arbitrary code. It was discovered that the proxy.onRequest API did not catch view-source URLs. If a user were tricked in to installing an extension with the proxy permission and opening View Source, an attacker could potentially exploit this to obtain sensitive information. Various other issues were also addressed.

tags | advisory, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2020-16042, CVE-2020-26970, CVE-2020-26973, CVE-2020-26974, CVE-2020-35111, CVE-2020-35113
MD5 | d5be7805a4212cf046f8575dfc0f5c39
Red Hat Security Advisory 2021-0034-01
Posted Jan 20, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0034-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. Issues addressed include XML injection, crlf injection, and information leakage vulnerabilities.

tags | advisory, vulnerability
systems | linux, redhat
advisories | CVE-2020-2304, CVE-2020-2305, CVE-2020-2306, CVE-2020-2307, CVE-2020-2308, CVE-2020-2309, CVE-2020-26137
MD5 | e62587459bb9d69e6473529a4b2a2763
Backdoor.Win32.Whisper.b Remote Stack Corruption
Posted Jan 20, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Whisper.b malware suffers from a remote stack corruption vulnerability.

tags | exploit, remote
systems | windows
MD5 | 4bd5113d73f55e63e170f6485cf89911
Oracle Business Intelligence Enterprise Edition 11.1.1.7.140715 XSS
Posted Jan 20, 2021
Authored by omurugur

Oracle Business Intelligence Enterprise Edition version 11.1.1.7.140715 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | c448226654355b79bade72089c37c5ba
Backdoor.Win32.Whirlpool.10 Remote Stack Buffer Overflow
Posted Jan 20, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Whirlpool.10 malware suffers from a remote stack buffer overflow vulnerability.

tags | exploit, remote, overflow
systems | windows
MD5 | c3d3b273680f8c02a4ca076c42f19836
Backdoor.Win32.Zombam.geq Remote Buffer Overflow
Posted Jan 20, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Zombam.geq malware suffers from a remote buffer overflow vulnerability.

tags | exploit, remote, overflow
systems | windows
MD5 | 0e05a63a804977c46a87862508e94e15
Page 3 of 4,596
Back12345Next

File Archive:

January 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jan 1st
    4 Files
  • 2
    Jan 2nd
    3 Files
  • 3
    Jan 3rd
    3 Files
  • 4
    Jan 4th
    33 Files
  • 5
    Jan 5th
    31 Files
  • 6
    Jan 6th
    21 Files
  • 7
    Jan 7th
    15 Files
  • 8
    Jan 8th
    19 Files
  • 9
    Jan 9th
    1 Files
  • 10
    Jan 10th
    1 Files
  • 11
    Jan 11th
    33 Files
  • 12
    Jan 12th
    19 Files
  • 13
    Jan 13th
    27 Files
  • 14
    Jan 14th
    8 Files
  • 15
    Jan 15th
    16 Files
  • 16
    Jan 16th
    1 Files
  • 17
    Jan 17th
    2 Files
  • 18
    Jan 18th
    20 Files
  • 19
    Jan 19th
    32 Files
  • 20
    Jan 20th
    15 Files
  • 21
    Jan 21st
    10 Files
  • 22
    Jan 22nd
    16 Files
  • 23
    Jan 23rd
    1 Files
  • 24
    Jan 24th
    1 Files
  • 25
    Jan 25th
    36 Files
  • 26
    Jan 26th
    0 Files
  • 27
    Jan 27th
    0 Files
  • 28
    Jan 28th
    0 Files
  • 29
    Jan 29th
    0 Files
  • 30
    Jan 30th
    0 Files
  • 31
    Jan 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close