what you don't know can hurt you
Showing 1 - 25 of 100 RSS Feed

Files

Expense Tracker 1.0 Cross Site Scripting
Posted Jan 6, 2021
Authored by Shivam Verma

Expense Tracker version 1.0 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
MD5 | f50443d37ac5248774fffa035e66629d

Related Files

Zoho BugTracker Cross Site Scripting
Posted Aug 7, 2012
Authored by LiquidWorm | Site zeroscience.mk

Zoho BugTracker suffers from multiple stored cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 4c0c0bff2e223b05a8201d4d63540300
Debian Security Advisory 2480-3
Posted Jun 8, 2012
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2480-3 - The recent security updates for request-tracker3.8, DSA-2480-1 and DSA-2480-2, contained another regression when running under mod_perl.

tags | advisory
systems | linux, debian
MD5 | 7dce476e714dcdf75733e73eefb37228
Debian Security Advisory 2480-2
Posted May 29, 2012
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2480-2 - It was discovered that the recent request-tracker3.8 update, DSA-2480-1, introduced a regression which caused outgoing mail to fail when running under mod_perl.

tags | advisory
systems | linux, debian
MD5 | e4aa2478fbf7e764244023d072013d17
Secunia Security Advisory 49275
Posted May 26, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Debian has issued an update for request-tracker3.8. This fixes multiple vulnerabilities, which can be exploited by malicious users to disclose potentially sensitive information, conduct SQL injection attacks, and bypass certain security restrictions and by malicious people to conduct cross-site scripting attacks, cross-site request forgery attacks, and compromise a vulnerable system.

tags | advisory, vulnerability, xss, sql injection, csrf
systems | linux, debian
MD5 | 3e0e8f92e166e441e29a725abef3584e
Debian Security Advisory 2480-1
Posted May 24, 2012
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2480-1 - Several vulnerabilities were discovered in Request Tracker, an issue tracking system.

tags | advisory, vulnerability
systems | linux, debian
advisories | CVE-2011-2082, CVE-2011-2083, CVE-2011-2084, CVE-2011-2085, CVE-2011-4458, CVE-2011-4459, CVE-2011-4460
MD5 | 91cf3c458efc7119cf62e3311412f636
Secunia Security Advisory 48245
Posted Mar 5, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Two vulnerabilities have been discovered in RivetTracker, which can be exploited by malicious users and malicious people to conduct SQL injection attacks.

tags | advisory, vulnerability, sql injection
MD5 | e1f34d9ab8b0e41033fc611a415d1fa1
Rivettracker 1.03 SQL Injection
Posted Mar 3, 2012
Authored by Ali Raheem

Rivettracker versions 1.03 and below suffer from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
MD5 | f3113ecddaaa57ee4cb20284049d791f
SiT! Support Incident Tracker 3.64 XSS / CSRF / SQL Injection
Posted Feb 2, 2012
Authored by High-Tech Bridge SA | Site htbridge.com

SiT! Support Incident Tracker version 3.64 suffers from cross site scripting, cross site request forgery and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection, csrf
MD5 | bed5bcf2781eaa5b6042bd0ba945ca66
Tracker Software pdfSaver ActiveX 3.60 Buffer Overflow
Posted Jan 30, 2012
Authored by LiquidWorm | Site zeroscience.mk

Tracker Software pdfSaver ActiveX control (pdfxctrl.dll) version 3.60.0128 suffers from stack buffer overflow vulnerability.

tags | exploit, overflow, activex
MD5 | c60d9b746f82351000d385b4d5a0aff2
Support Incident Tracker 3.65 Remote Code Execution
Posted Nov 20, 2011
Authored by EgiX

Support Incident Tracker versions 3.65 and below remote code execution exploit that leverages translate.php.

tags | exploit, remote, php, code execution
MD5 | 90b242926a56d02263ac1207b2e9b409
Support Incident Tracker 3.65 Remote Command Execution
Posted Nov 13, 2011
Authored by Secunia Research, juan vazquez | Site metasploit.com

This Metasploit module combines two separate issues within Support Incident Tracker versions 3.65 and below to upload arbitrary data and thus execute a shell. The two issues exist in ftp_upload_file.php. The first vulnerability exposes the upload dir used to store attachments. The second vulnerability allows arbitrary file upload since there is no validation function to prevent from uploading any file type. Authentication is required to exploit both vulnerabilities.

tags | exploit, arbitrary, shell, php, vulnerability, file upload
advisories | CVE-2011-3829, CVE-2011-3833, OSVDB-76999, OSVDB-77003
MD5 | 739ddfe0d298d16369d8b7893cefd2ef
Secunia Security Advisory 45453
Posted Nov 10, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Secunia Research has discovered a weakness and multiple vulnerabilities in Support Incident Tracker, which can be exploited by malicious users to disclose sensitive information, conduct SQL injection attacks, and compromise a vulnerable system and by malicious people to conduct cross-site scripting attacks.

tags | advisory, vulnerability, xss, sql injection
MD5 | 31a704d965f6523a93e03d0a96c9ce9a
SiT! Support Incident Tracker 3.64 XSS / XSRF / SQL Injection
Posted Sep 14, 2011
Authored by High-Tech Bridge SA | Site htbridge.com

SiT! Support Incident Tracker version 3.64 suffers from cross site request forgery, cross site scripting, and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection, csrf
MD5 | ff3b29afea73a34eea793264049c2535
Secunia Security Advisory 46019
Posted Sep 14, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - High-Tech Bridge SA has discovered multiple vulnerabilities in Support Incident Tracker, which can be exploited by malicious users to conduct SQL injection attacks and by malicious people to conduct cross-site scripting, cross-site request forgery, and SQL injection attacks.

tags | advisory, vulnerability, xss, sql injection, csrf
MD5 | 072da213c8bed845583b9126512c1bd1
Secunia Security Advisory 45983
Posted Sep 14, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - High-Tech Bridge SA has discovered two vulnerabilities in Support Incident Tracker, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, vulnerability, xss
MD5 | ae83b886eda07d4a248e946056197f0a
WordPress Crawl Rate Tracker 2.0.2 SQL Injection
Posted Aug 31, 2011
Authored by Miroslav Stampar

WordPress Crawl Rate Tracker plugin versions 2.0.2 and below suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 694040d47ef333fce8ad2fdec826e4e3
Network Tracker 0.95 Cross Site Scripting
Posted Aug 19, 2011
Authored by G13

Network Tracker version 0.95 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 87b04deb66086cee7f605b41ea39d55f
Secunia Security Advisory 45437
Posted Jul 27, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Yuri Goltsev has discovered two vulnerabilities in Support Incident Tracker, which can be exploited by malicious users to conduct SQL injection attacks.

tags | advisory, vulnerability, sql injection
MD5 | 03f89fd3e24e9b2b672133bc3dc9e52d
Support Incident Tracker 3.63p1 SQL Injection
Posted Jul 26, 2011
Authored by Yuri Goltsev | Site ptsecurity.com

Support Incident Tracker versions 3.63p1 and below suffer from remote SQL injection vulnerabilities.

tags | advisory, remote, vulnerability, sql injection
MD5 | a94910cce1fd2e80143ef21f2711c1d7
Secunia Security Advisory 45277
Posted Jul 23, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Some vulnerabilities with unknown impacts have been reported in Support Incident Tracker.

tags | advisory, vulnerability
MD5 | 51d15e65ccaf9f99f458bf894b5b71d9
Secunia Security Advisory 44701
Posted Jun 21, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Secunia Research has discovered a security issue in NNT Change Tracker and Remote Angel, which can be exploited by malicious, local users to gain escalated privileges.

tags | advisory, remote, local
MD5 | 8e3c57773cd8271991208f172a2b15b7
Red Hat Security Advisory 2011-0857-01
Posted Jun 8, 2011
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2011-0857-01 - These packages provide the OpenJDK 6 Java Runtime Environment and the OpenJDK 6 Software Development Kit. Integer overflow flaws were found in the way Java2D parsed JPEG images and user-supplied fonts. An attacker could use these flaws to execute arbitrary code with the privileges of the user running an untrusted applet or application. It was found that the MediaTracker implementation created Component instances with unnecessary access privileges. A remote attacker could use this flaw to elevate their privileges by utilizing an untrusted applet or application that uses Swing. Various other issues were also addressed.

tags | advisory, java, remote, overflow, arbitrary
systems | linux, redhat
advisories | CVE-2011-0862, CVE-2011-0864, CVE-2011-0865, CVE-2011-0867, CVE-2011-0868, CVE-2011-0869, CVE-2011-0871
MD5 | a655c4a521f276615f7ce8b067d36676
Red Hat Security Advisory 2011-0856-01
Posted Jun 8, 2011
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2011-0856-01 - These packages provide the OpenJDK 6 Java Runtime Environment and the OpenJDK 6 Software Development Kit. Integer overflow flaws were found in the way Java2D parsed JPEG images and user-supplied fonts. An attacker could use these flaws to execute arbitrary code with the privileges of the user running an untrusted applet or application. It was found that the MediaTracker implementation created Component instances with unnecessary access privileges. A remote attacker could use this flaw to elevate their privileges by utilizing an untrusted applet or application that uses Swing. Various other issues were also addressed.

tags | advisory, java, remote, overflow, arbitrary
systems | linux, redhat
advisories | CVE-2011-0862, CVE-2011-0864, CVE-2011-0865, CVE-2011-0867, CVE-2011-0868, CVE-2011-0869, CVE-2011-0871
MD5 | b24e3c8531118da077efbd3f5f02a2ad
NNT Change Tracker Enterprise 4.7 Weak Encryption
Posted May 25, 2011
Authored by Dennis Brunnen

NNT Change Tracker Enterprise version 4.7 suffers from a weak encryption vulnerability.

tags | advisory
MD5 | 5941856ee630ec382ad84de5ee5420c0
Debian Security Advisory 2226-1
Posted Apr 27, 2011
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2226-1 - M. Lucinskij and P. Tumenas discovered a buffer overflow in the code for processing S3M tracker files in the Modplug tracker music library, which may result in the execution of arbitrary code.

tags | advisory, overflow, arbitrary
systems | linux, debian
advisories | CVE-2011-1574
MD5 | ab6ff56596d23cc4eff209aa1231c32d
Page 1 of 4
Back1234Next

File Archive:

March 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    19 Files
  • 2
    Mar 2nd
    0 Files
  • 3
    Mar 3rd
    0 Files
  • 4
    Mar 4th
    0 Files
  • 5
    Mar 5th
    0 Files
  • 6
    Mar 6th
    0 Files
  • 7
    Mar 7th
    0 Files
  • 8
    Mar 8th
    0 Files
  • 9
    Mar 9th
    0 Files
  • 10
    Mar 10th
    0 Files
  • 11
    Mar 11th
    0 Files
  • 12
    Mar 12th
    0 Files
  • 13
    Mar 13th
    0 Files
  • 14
    Mar 14th
    0 Files
  • 15
    Mar 15th
    0 Files
  • 16
    Mar 16th
    0 Files
  • 17
    Mar 17th
    0 Files
  • 18
    Mar 18th
    0 Files
  • 19
    Mar 19th
    0 Files
  • 20
    Mar 20th
    0 Files
  • 21
    Mar 21st
    0 Files
  • 22
    Mar 22nd
    0 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    0 Files
  • 26
    Mar 26th
    0 Files
  • 27
    Mar 27th
    0 Files
  • 28
    Mar 28th
    0 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close