October CMS builds 465 and below suffer from arbitrary file read, arbitrary file deletion, file uploading to arbitrary locations, persistent and reflective cross site scripting, and CSV injection vulnerabilities.
a79e40ac7fff8141301027b2d8a73d91Microsoft Windows Win32k privilege escalation exploit. An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode.
6b7e0e5d390dcae63cd77660c4d5df8bStock Management System version 1.0 suffers from a cross site request forgery vulnerability.
3c5b73ade86e8add863d011533c5b13bStock Management System version 1.0 cross site scripting credential harvesting exploit.
e446b8905eecb3fea89495e9af42d485Stock Management System version 1.0 suffers from multiple persistent cross site scripting vulnerabilities in the Brand, Categories, and Product name fields.
91a40ee32f0efdfc4b24865fa37aaa45Stock Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
86a8471246e2649f885e68626bf61d29Umbraco CMS version 7.12.4 authenticated remote code execution exploit.
c6a4a934c6775c455e5e4f225dec66c0Mara CMS version 7.5 suffers from a cross site scripting vulnerability.
9fb48d350011f3aed4c31764dd7e0c36OpenEMR versions 5.0.1 and below authenticated remote code execution exploit written in ruby.
0c4b5a66f0b188dd68ac3a5de13961d4Atmail Email Server Appliance version 6.4 exploit toolchain that leverages cross site scripting and cross site request forgery to achieve code execution.
5e8eedf4d9e738503fa65cc3f2f4de89This archive contains all of the 140 exploits added to Packet Storm in July, 2020.
d14672a0e60b4cb70dc3e433ffd92028BacklinkSpeed version 2.4 SEH buffer overflow proof of concept exploit.
125549f2a909bc9933fb1effe1953aa3CloudMe version 1.11.2 SEH buffer overflow exploit.
f14aefabd6974df7ab1eb432b3acade5All-Dynamics Software enlogic:show Digital Signage System version 2.0.2 suffers from a session fixation vulnerability.
b360840e29dc9c52e8c3e47dcec29e65All-Dynamics Software enlogic:show Digital Signage System version 2.0.2 suffers from a cross site request forgery vulnerability.
7e17b980450da6f3316e47dbaa25e3d6Online Bike Rental version 1.0 suffers from an authenticated remote shell upload vulnerability.
c24d92ba32b907f53df823c312feb8d2iOS suffers from a Page Protection Layer (PPL) bypass due to incorrect argument verification in pmap_protect_options_internal() and pmap_remove_options_internal().
880d5a7841d44d213ff1f1ca340b8776This Metasploit module exploits a race and use-after-free vulnerability in the FreeBSD kernel IPv6 socket handling. A missing synchronization lock in the IPV6_2292PKTOPTIONS option handling in setsockopt permits racing ip6_setpktopt access to a freed ip6_pktopts struct. This exploit overwrites the ip6po_pktinfo pointer of a ip6_pktopts struct in freed memory to achieve arbitrary kernel read/write.
1349f7155a1c7dce0d1fdef5aa98748aA remotely exploitable vulnerability exists within SharePoint that can be leveraged by a remote authenticated attacker to execute code within the context of the SharePoint application service. The privileges in this execution context are determined by the account that is specified when SharePoint is installed and configured. The vulnerability is related to a failure to validate the source of XML input data, leading to an unsafe deserialization operation that can be triggered from a page that initializes either the ContactLinksSuggestionsMicroView type or a derivative of it. In a default configuration, a Domain User account is sufficient to access SharePoint and exploit this vulnerability.
1951b8a6649841f289b9e4feb3f9e3b0This Metasploit module exploits a buffer overflow within the CA Unified Infrastructure Management nimcontroller. The vulnerability occurs in the robot (controller) component when sending a specially crafted directory_list probe. Technically speaking the target host must also be vulnerable to CVE-2020-8010 in order to reach the directory_list probe.
ffc98387b67aad159a485c22345cee2dOnline Shopping Alphaware version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
2f22bbeb57ec0516c03bb902f1c1c310Online Bike Rental version 1.0 suffers from a remote shell upload vulnerability.
5137e92942eb565db42676669250675aDaily Tracker System version 1.0 suffers from a cross site scripting vulnerability.
f76f9f2e802b07ba734d6ceff8f28a90Daily Tracker System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
4f5a24a83647c98bdc4387fb5214ec35Namirial SIGNificant SignAnyWhere versions 6.10.60.25434 and 6.10.100.25817 suffer from a persistent cross site scripting vulnerability.
d99d281f793f77347d2add6ed8e295c2
© 2020 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed