exploit the possibilities
Showing 1 - 25 of 2,466 RSS Feed

Info Disclosure Files

Microsoft Edge Information Disclosure / Remote Code Execution
Posted Oct 29, 2020
Authored by Ofir Moskovitch

Microsoft Edge suffers from information disclosure and remote code execution vulnerabilities. Affected builds include 85.0.564.83, 85.0.564.86, 85.0.564.70, 86.0.622.38, 86.0.622.43, 86.0.622.48, 86.0.622.51, and 86.0.622.56.

tags | advisory, remote, vulnerability, code execution, info disclosure
MD5 | d1283aca7d57dba59274a53c8d4be7c8
Gentoo Linux Security Advisory 202010-03
Posted Oct 20, 2020
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202010-3 - An information disclosure vulnerability in libjpeg-turbo allow remote attackers to obtain sensitive information. Versions 2.0.4-r1 are affected.

tags | advisory, remote, info disclosure
systems | linux, gentoo
advisories | CVE-2020-13790
MD5 | c41e8764f72fbfba8fd43336c2c227d5
MonoCMS Blog 1.0 File Deletion / CSRF / Hardcoded Credentials
Posted Oct 1, 2020
Authored by Shahrukh Iqbal Mirza

MonoCMS Blog version 1.0 suffers from arbitrary file deletion, cross site request forgery, and information disclosure vulnerabilities.

tags | exploit, arbitrary, vulnerability, file inclusion, info disclosure, csrf
advisories | CVE-2020-25986, CVE-2020-25987
MD5 | 858c4bad79460948ebff42b9ed1fd0cd
Corona Exposure Notifications API Data Leakage
Posted Sep 30, 2020
Authored by Dirk-Willem van Gulik

It appears that the corona virus Exposure Notifications API for iOS and Android may have a data leakage issue.

tags | exploit, virus, info disclosure
systems | ios
advisories | CVE-2020-24721
MD5 | f3e9ce294b54d711be777bb3c9716ce7
Ubuntu Security Notice USN-4547-1
Posted Sep 28, 2020
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4547-1 - It was discovered that an information disclosure vulnerability existed in the LibVNCServer vendored in iTALC when sending a ServerCutText message. An attacker could possibly use this issue to expose sensitive information. It was discovered that the LibVNCServer and LibVNCClient vendored in iTALC incorrectly handled certain packet lengths. A remote attacker could possibly use this issue to obtain sensitive information, cause a denial of service, or execute arbitrary code. Various other issues were also addressed.

tags | advisory, remote, denial of service, arbitrary, info disclosure
systems | linux, ubuntu
advisories | CVE-2018-15127, CVE-2018-20022, CVE-2018-20023, CVE-2018-20024, CVE-2018-20749, CVE-2018-7225, CVE-2019-15681
MD5 | 9922e4b06254766557616cfff60d0f5a
WordPress WP Courses 2.0.29 Information Disclosure / Authorization Bypass
Posted Sep 28, 2020
Authored by redtimmysec | Site redtimmy.com

WordPress WP Courses plugin versions 2.0.29 and below suffer from an issue that allows an unauthenticated attacker the ability to ex-filtrate all the content of courses through the WordPress REST API.

tags | advisory, info disclosure
MD5 | 44b651d956b8e89fb868cb5ebd9d676c
B-swiss 3 Digital Signage System 3.6.5 Database Disclosure
Posted Sep 19, 2020
Authored by LiquidWorm | Site zeroscience.mk

B-swiss 3 Digital Signage System version 3.6.5 is vulnerable to an unauthenticated database download and information disclosure vulnerability. This can enable the attacker to disclose sensitive information resulting in authentication bypass, session hijacking and full system control.

tags | exploit, info disclosure
MD5 | 1175b32ecdd1ad1b9b42a4c5bc9c5d4c
Gentoo Linux Security Advisory 202009-08
Posted Sep 14, 2020
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202009-8 - An information disclosure vulnerability in GNOME Shell might allow local attackers to obtain sensitive information. Versions less than 3.34.5-r1 are affected.

tags | advisory, shell, local, info disclosure
systems | linux, gentoo
advisories | CVE-2020-17489
MD5 | 309e5318135523eb52d41ec01f1dface
Tiandy IPC / NVR 9.12.7 Credential Disclosure
Posted Sep 10, 2020
Authored by zb3

Tiandy IPC and NVR version 9.12.7 suffer from a credential disclosure vulnerability.

tags | exploit, info disclosure
MD5 | 31af0e01d3411bff4073c4969fab0aa5
Bagisto Credential Disclosure
Posted Sep 1, 2020
Authored by devsecweb

As of 2020/09/01, all versions of Bagisto appear to leak database and email server credentials in the document root.

tags | exploit, root, info disclosure
MD5 | 7fc061d5cf8581a756c5a61f9a15896f
Gentoo Linux Security Advisory 202008-08
Posted Aug 19, 2020
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202008-8 - NSS has multiple information disclosure vulnerabilities when handling secret key material. Versions less than 3.55 are affected.

tags | advisory, vulnerability, info disclosure
systems | linux, gentoo
advisories | CVE-2020-12400, CVE-2020-12401, CVE-2020-12403
MD5 | 2a9415ebd0e6d2b85bb1b35bfa6528d5
Gentoo Linux Security Advisory 202007-49
Posted Jul 27, 2020
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202007-49 - NSS has an information disclosure vulnerability when handling DSA keys. Versions less than 3.52.1 are affected.

tags | advisory, info disclosure
systems | linux, gentoo
advisories | CVE-2020-12399
MD5 | 4a852924b4ae34fc98fa7071801bc91e
Gentoo Linux Security Advisory 202007-16
Posted Jul 27, 2020
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202007-16 - Multiple vulnerabilities have been found in cURL, the worst of which could result in information disclosure or data loss. Versions less than 7.71.0 are affected.

tags | advisory, vulnerability, info disclosure
systems | linux, gentoo
advisories | CVE-2020-8169, CVE-2020-8177
MD5 | 2e1310847f34cc20dbac1a05a0e4e89b
WordPress Email Subscribers And Newsletters 4.2.2 File Disclosure
Posted Jul 27, 2020
Authored by KBA at Sogeti Esec

WordPress Email Subscribers and Newsletters plugin versions 4.2.2 and below suffer from a file download vulnerability.

tags | exploit, info disclosure
advisories | CVE-2019-19985
MD5 | 4c2e2ffb4bdd987513ecff071860aaad
VMware ESXi Use-After-Free / Out-Of-Bounds Access
Posted Jul 17, 2020
Authored by Google Security Research, Cfir Cohen

Several security issues have been identified in the VMware ESIx virtual machine monitor (VMM). A use-after-free (UAF) vulnerability in PVNVRAM, a missing return value check in EHCI USB controller leading to private heap information disclosure, and several out-of-bounds reads.

tags | advisory, info disclosure
advisories | CVE-2020-3960, CVE-2020-3963, CVE-2020-3964, CVE-2020-3965
MD5 | d2417f8af8ebed99ebd6fdfff7a2c153
Webtareas 2.1 / 2.1p File Upload / Information Disclosure
Posted Jul 9, 2020
Authored by AppleBois

Webtareas versions 2.1 and 2.1p suffer from unauthenticated file uploads that allow for remote code execution and expose directory listings.

tags | exploit, remote, code execution, info disclosure, file upload
MD5 | 411b5ebef9a23a0632621a466851bcb3
Ubuntu Security Notice USN-4407-1
Posted Jul 2, 2020
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4407-1 - It was discovered that LibVNCServer incorrectly handled decompressing data. An attacker could possibly use this issue to cause LibVNCServer to crash, resulting in a denial of service. It was discovered that an information disclosure vulnerability existed in LibVNCServer when sending a ServerCutText message. An attacker could possibly use this issue to expose sensitive information. This issue only affected Ubuntu 19.10, Ubuntu 18.04 LTS, and Ubuntu 16.04 LTS. Various other issues were also addressed.

tags | advisory, denial of service, info disclosure
systems | linux, ubuntu
advisories | CVE-2017-18922, CVE-2019-15680, CVE-2019-15681, CVE-2019-20788
MD5 | ab2befd375e9d3e5fb9cb009d5446e52
Gentoo Linux Security Advisory 202006-01
Posted Jun 9, 2020
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202006-1 - An information disclosure vulnerability in GnuTLS allow remote attackers to obtain sensitive information. Versions less than 3.6.14 are affected.

tags | advisory, remote, info disclosure
systems | linux, gentoo
advisories | CVE-2020-13777
MD5 | 6846b303f654b57b93a753ac75da510f
Castel NextGen DVR 1.0.0 Bypass / CSRF / Disclosure
Posted Jun 5, 2020
Authored by Aaron Bishop

Castel NextGen DVR version 1.0.0 suffers from authorization bypass, credential disclosure, and cross site request forgery vulnerabilities.

tags | exploit, vulnerability, bypass, info disclosure, csrf
advisories | CVE-2020-11679, CVE-2020-11680, CVE-2020-11681, CVE-2020-11682
MD5 | aa89a93b4527459f2ae2ef8eb52607af
NeonLMS Learning Management System PHP Laravel Script 4.6 File Download
Posted Jun 4, 2020
Authored by th3d1gger

NeonLMS Learning Management System PHP Laravel Script version 4.6 suffers from an arbitrary file download vulnerability.

tags | exploit, arbitrary, php, info disclosure
MD5 | e762859b96e7391cb7c4d0f1d5bc1371
Joomla XCloner Backup 3.5.3 Local File Disclosure
Posted May 26, 2020
Authored by Mehmet Kelepce

Joomla XCloner Backup version 3.5.3 suffers from a local file disclosure vulnerability.

tags | exploit, local, info disclosure
MD5 | 66b5261ea7ccf14e1684d338e34e4975
webERP 4.15.1 Backup Disclosure
Posted May 5, 2020
Authored by Besim Altinok

webERP version 4.15.1 suffers from an unauthenticated backup file disclosure vulnerability.

tags | exploit, info disclosure
MD5 | c046b257ecfc8a77adb0160b4cf0e185
Ubuntu Security Notice USN-4349-1
Posted May 1, 2020
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4349-1 - A buffer overflow was discovered in the network stack. An unprivileged user could potentially enable escalation of privilege and/or denial of service. This issue was already fixed in a previous release for 18.04 LTS and 19.10. A buffer overflow was discovered in BlockIo service. An unauthenticated user could potentially enable escalation of privilege, information disclosure and/or denial of service. This issue was already fixed in a previous release for 18.04 LTS and 19.10. Various other issues were also addressed.

tags | advisory, denial of service, overflow, info disclosure
systems | linux, ubuntu
advisories | CVE-2018-12178, CVE-2018-12180, CVE-2018-12181, CVE-2019-14558, CVE-2019-14559, CVE-2019-14563, CVE-2019-14575, CVE-2019-14586, CVE-2019-14587
MD5 | f5b3739ba7435473ac014a588c4080a5
File Explorer 1.4 Information Disclosure
Posted Apr 28, 2020
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

File Explorer version 1.4 for iOS suffers from an information disclosure vulnerability.

tags | exploit, info disclosure
systems | ios
MD5 | 83b0a4ee978a1cc4ed42917bc32a23a3
Netis E1+ 1.2.32533 Password Leak
Posted Apr 27, 2020
Authored by Besim Altinok, Ismail Bozkurt

Netis E1+ version 1.2.32533 suffers from an unauthenticated wifi password disclosure vulnerability.

tags | exploit, info disclosure
MD5 | 37d000d068348c3de171961a0e429488
Page 1 of 99
Back12345Next

File Archive:

October 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    25 Files
  • 2
    Oct 2nd
    13 Files
  • 3
    Oct 3rd
    1 Files
  • 4
    Oct 4th
    1 Files
  • 5
    Oct 5th
    15 Files
  • 6
    Oct 6th
    15 Files
  • 7
    Oct 7th
    15 Files
  • 8
    Oct 8th
    11 Files
  • 9
    Oct 9th
    3 Files
  • 10
    Oct 10th
    1 Files
  • 11
    Oct 11th
    1 Files
  • 12
    Oct 12th
    8 Files
  • 13
    Oct 13th
    12 Files
  • 14
    Oct 14th
    23 Files
  • 15
    Oct 15th
    4 Files
  • 16
    Oct 16th
    13 Files
  • 17
    Oct 17th
    1 Files
  • 18
    Oct 18th
    1 Files
  • 19
    Oct 19th
    27 Files
  • 20
    Oct 20th
    41 Files
  • 21
    Oct 21st
    18 Files
  • 22
    Oct 22nd
    16 Files
  • 23
    Oct 23rd
    2 Files
  • 24
    Oct 24th
    1 Files
  • 25
    Oct 25th
    1 Files
  • 26
    Oct 26th
    17 Files
  • 27
    Oct 27th
    19 Files
  • 28
    Oct 28th
    29 Files
  • 29
    Oct 29th
    13 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close