CMS Made Simple version 2.2.14 suffers from an authenticated shell upload vulnerability.
dfec683841667f70218145ec3220e0b1035d7cd217d4a78f597b5fdeafa9b894GnuTLS is a secure communications library implementing the SSL and TLS protocols and technologies around them. It provides a simple C language application programming interface (API) to access the secure communications protocols, as well as APIs to parse and write X.509, PKCS #12, OpenPGP, and other required structures. It is intended to be portable and efficient with a focus on security and interoperability.
7e3f431a43e5366ff5a9b7646d2a79892a905237ef18cb147b945ec99012686dmod_auth_pubtkt is a simple Web single sign-on (SSO) solution for Apache. It validates authentication tickets provided by the client in a cookie using public-key cryptography (DSA or RSA). Thus, only the login server that generates the tickets needs to possess the private key, while Web servers can verify tickets given only the public key. The implementation of the login server is left to the user, but an example and a library in PHP are provided with the distribution.
8ff3de9c5acc026c6fd74fd8e599c0c2659cd29c51693dbf67a8bf8c609be94eSimple Web Content Management System version 1.1 suffers from multiple remote SQL injection vulnerabilities. Most of these issues were already priorly discovered in early 2011 by John Leitch for versions 1.21 and below.
82966c3a58927288ab4557775bf16493908a7de8d6566a8d84e89069b47fae4fGNU SASL is an implementation of the Simple Authentication and Security Layer framework and a few common SASL mechanisms. SASL is used by network servers such as IMAP and SMTP to request authentication from clients, and in clients to authenticate against servers. The library includes support for the SASL framework (with authentication functions and application data privacy and integrity functions) and at least partial support for the CRAM-MD5, EXTERNAL, GSSAPI, ANONYMOUS, PLAIN, SECURID, DIGEST-MD5, LOGIN, NTLM, and KERBEROS_V5 mechanisms.
310262d1ded082d1ceefc52d6dad265c1decae8d84e12b5947d9b1dd193191e5Secunia Security Advisory - Chokri B.A. has discovered a vulnerability in GetSimple CMS, which can be exploited by malicious people to conduct cross-site scripting attacks.
8eb6820d562ff4891bab91a4c04d3a61385207060dfd1cd6b466f9b5a3a2b3f6GetSimple CMS version 3.1 suffers from multiple cross site scripting vulnerabilities.
907c8b643da2c6b6cde7782c0dc396629ae2402f8972644e23c2e574d7f1ee23This is a simple python script for cracking MySQL MD5 passwords.
2eabc6d50aa0308a12f9f621132d81ab8133f46b0854377425c4d9b0bac9f450This is a simple bash script for bruteforcing WordPress.
a04595fb1fae7483302800dc402320dae1656bd040d010c93927bb2d7e92208aGnuTLS is a secure communications library implementing the SSL and TLS protocols and technologies around them. It provides a simple C language application programming interface (API) to access the secure communications protocols, as well as APIs to parse and write X.509, PKCS #12, OpenPGP, and other required structures. It is intended to be portable and efficient with a focus on security and interoperability.
d9a436ea8718c38a564812e465c883f4f37ddc8c80c6f8bee54819e6e4089c37GnuTLS is a secure communications library implementing the SSL and TLS protocols and technologies around them. It provides a simple C language application programming interface (API) to access the secure communications protocols, as well as APIs to parse and write X.509, PKCS #12, OpenPGP, and other required structures. It is intended to be portable and efficient with a focus on security and interoperability.
c3a07f641d78a4d4e5a6984c4e8f07390944c68c8d982826bd3f672383b4d8faCMS Made Simple versions 1.10.3 and below suffer from a cross site scripting vulnerability.
98d1ca8e6675a4383b17b98dd6f0f53b7983aa7263387b0bc73d41b8421c239aSimple PHP Agenda versions 2.2.8 and below suffer from multiple cross site request forgery vulnerabilities.
02e95a628273a7d274960548d31bfc06e489e5e9030ae0a37dac889a18238b13GetSimple version 3.1 suffers from backup download and shell upload vulnerabilities.
6d7e6bb2dc03c8ee708abf9ebd0c5acdb49191acb3f9a1b447a52889d00c3574Quest InTrust version 10.4.x suffers from ArDoc.dll active-x control remote file creation / overwrite vulnerabilities in the ReportTree and SimpleTree classes. Proof of concept code included.
1b249434937ec1c1ec6432094ca9aca11399fda520e83ee44caaf8e3963ed614Firewall Builder consists of a GUI and set of policy compilers for various firewall platforms. It helps users maintain a database of objects and allows policy editing using simple drag-and-drop operations. The GUI and policy compilers are completely independent, which provides for a consistent abstract model and the same GUI for different firewall platforms. It currently supports iptables, ipfilter, ipfw, OpenBSD pf, Cisco PIX and FWSM, and Cisco routers access lists.
452514a1ec0be1416bfca93603e6c89deb91d1a3a19671c64b5a8868a3743dafCMSimple_XH version 1.5.2 suffers from a cross site scripting vulnerability.
3baabd8c7d302fd46aa95ed98487b55cd2b7d11dab5ae33b933e1dd84125a337Secunia Security Advisory - A vulnerability has been discovered in CMSimple, which can be exploited by malicious people to conduct cross-site scripting attacks.
e5b2b107aa6b7a62f38663f024bdf9291802cb64c39f94512fd4a9547ed1a5f3This is a simple script that leverages nmap to scan for RDP-Server.
396f47878b4ab500666868acb58cf5871826fd5090559209cb91564b55b243e6GnuTLS is a secure communications library implementing the SSL and TLS protocols and technologies around them. It provides a simple C language application programming interface (API) to access the secure communications protocols, as well as APIs to parse and write X.509, PKCS #12, OpenPGP, and other required structures. It is intended to be portable and efficient with a focus on security and interoperability.
a87886259a035ff1051b77cc41e86323b294a6bd910b0ce66c6fb708ab45dc11Simple Posting System version 1.0 Final suffers from a local file inclusion vulnerability.
d73abe8631ff8d9a2ed2661dce68ae64f4fa4453d6808dd87777087f0e7b3e0bSimple Fuzz is a simple fuzzer. It has two network modes of operation, an output mode for developing command line fuzzing scripts, as well as taking fuzzing strings from literals and building strings from sequences. It is built to fill a need - the need for a quickly configurable black box testing utility that does not require intimate knowledge of the inner workings of C or require specialized software rigs. The aim is to just provide a simple interface, clear inputs/outputs, and reusability.
a65bb4d048c713dd9ecc4b42b98cc124516fd5c1df19deddfc664476aad7caacGnuTLS is a secure communications library implementing the SSL and TLS protocols and technologies around them. It provides a simple C language application programming interface (API) to access the secure communications protocols, as well as APIs to parse and write X.509, PKCS #12, OpenPGP, and other required structures. It is intended to be portable and efficient with a focus on security and interoperability.
013800e2bb94d72f5f1c3b447553223039f01bd0655d60138e1a0cea50022962The D-Link DSL-2640B ADSL router suffers from a simple authentication bypass vulnerability by spoofing the MAC address of a logged in administrator.
12bc1d6056d32882aa0e9cb89830f0cca2bd54029fb7e936e8201175dcf085f6GnuTLS is a secure communications library implementing the SSL and TLS protocols and technologies around them. It provides a simple C language application programming interface (API) to access the secure communications protocols, as well as APIs to parse and write X.509, PKCS #12, OpenPGP, and other required structures. It is intended to be portable and efficient with a focus on security and interoperability.
2e0adbc50059496ec13177034708eef163344c2b8898da7ce6a91312b70d6e7cCodetective is a simple tool to determine the crypto/encoding algorithm used according to traces of its representation. Written in Python.
cbaf97c8b1ea47226eb5fa662a8442645b216ebfcc9373d0676a59eafd9816a9
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Subscribe to an RSS Feed