what you don't know can hurt you
Showing 26 - 50 of 28,842 RSS Feed

Remote Files

Red Hat Security Advisory 2021-2331-01
Posted Jun 9, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2331-01 - The libldb packages provide an extensible library that implements an LDAP-like API to access remote LDAP servers, or use local TDB databases. Issues addressed include an out of bounds read vulnerability.

tags | advisory, remote, local
systems | linux, redhat
advisories | CVE-2021-20277
MD5 | 172795bd25b2ecd05992f33ab65afdd0
COVID-19 Testing Management System 1.0 SQL Injection
Posted Jun 8, 2021
Authored by nu11secur1ty

COVID-19 Testing Management System version 1.0 remote SQL injection exploit based upon the original discovery by Rohit Burke in May of 2021.

tags | exploit, remote, sql injection
advisories | CVE-2021-33470
MD5 | 12bc9bc3329a4bc99a1d6ad5f44b6f45
WordPress wpDiscuz 7.0.4 Remote Code Execution
Posted Jun 8, 2021
Authored by Fellipe Oliveira

WordPress wpDiscuz plugin version 7.0.4 unauthenticated remote code execution exploit.

tags | exploit, remote, code execution
advisories | CVE-2020-24186
MD5 | 7242124d681139b42a02805778bfe02e
Ubuntu Security Notice USN-4937-2
Posted Jun 7, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4937-2 - USN-4937-1 fixed a vulnerability in GNOME Autoar. The update caused a regression when extracting certain archives. This update fixes the problem. Ondrej Holy discovered that GNOME Autoar could extract files outside of the intended directory. If a user were tricked into extracting a specially crafted archive, a remote attacker could create files in arbitrary locations, possibly leading to code execution. Various other issues were also addressed.

tags | advisory, remote, arbitrary, code execution
systems | linux, ubuntu
MD5 | 56203d8395d3d051ed05e8cd62776087
Ubuntu Security Notice USN-4969-3
Posted Jun 7, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4969-3 - USN-4969-1 fixed a vulnerability in DHCP. The package for Ubuntu 21.04 introduced a regression causing it to reject certain valid configuration files. This update fixes the problem. Jon Franklin and Pawel Wieczorkiewicz discovered that DHCP incorrectly handled lease file parsing. A remote attacker could possibly use this issue to cause DHCP to crash, resulting in a denial of service. Various other issues were also addressed.

tags | advisory, remote, denial of service
systems | linux, ubuntu
MD5 | 9fe00e0f535c93884b6a5a03be92540a
Rocket.Chat 3.12.1 NoSQL Injection / Code Execution
Posted Jun 7, 2021
Authored by enox

Rocket.Chat version 3.12.1 unauthenticated NoSQL injection to remote code execution exploit.

tags | exploit, remote, code execution, sql injection
advisories | CVE-2021-22911
MD5 | 1d488a4a23cebcb6cf88668c84de24c7
OptiLink ONT1GEW GPON 2.1.11_X101 Remote Code Execution
Posted Jun 7, 2021
Authored by Amal, SecNigma

OptiLink ONT1GEW GPON version 2.1.11_X101 build 1127.190306 authenticated remote code execution exploit.

tags | exploit, remote, code execution
MD5 | 41c5a06cd9d6a0665822801930c39a06
WordPress wpDiscuz 7.0.4 Shell Upload
Posted Jun 6, 2021
Authored by Chloe Chamberland, Juampa Rodriguez

WordPress wpDiscuz plugin version 7.0.4 remote shell upload exploit.

tags | exploit, remote, shell
advisories | CVE-2020-24186
MD5 | 03935e525138dda6961b79bfe756d49d
Gitlab 13.10.2 Remote Code Execution
Posted Jun 4, 2021
Authored by enox

Gitlab version 13.10.2 authenticated remote code execution exploit.

tags | exploit, remote, code execution
MD5 | 0cc1a2bd1cf9d33e81fc7b2b838ff7bf
Monstra CMS 3.0.4 Remote Code Execution
Posted Jun 4, 2021
Authored by Ron Jost

Monstra CMS version 3.0.4 authenticated remote code execution exploit.

tags | exploit, remote, code execution
advisories | CVE-2018-6383
MD5 | 3ded1d3e9037c9bda38185492e8210ba
Ubuntu Security Notice USN-4981-1
Posted Jun 4, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4981-1 - Joshua Rogers discovered that Squid incorrectly handled requests with the urn: scheme. A remote attacker could possibly use this issue to cause Squid to consume resources, leading to a denial of service. Joshua Rogers discovered that Squid incorrectly handled requests to the Cache Manager API. A remote attacker with access privileges could possibly use this issue to cause Squid to consume resources, leading to a denial of service. This issue was only addressed in Ubuntu 20.04 LTS, Ubuntu 20.10, and Ubuntu 21.04. Various other issues were also addressed.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2021-28651, CVE-2021-28652, CVE-2021-28662, CVE-2021-31807, CVE-2021-31808, CVE-2021-33620
MD5 | dc785af17f095adce3188290ba6dc2cb
CMS Made Simple V2.2.13
Posted Jun 4, 2021
Authored by Tanmay Tyagi, Abhinav

Whitepaper giving an overview of a remote code execution vulnerability that exists in CMS Made Simple version 2.2.13.

tags | paper, remote, code execution
advisories | CVE-2020-10682
MD5 | 3af37dab03b3441fb4fb81271f633f50
Microsoft RDP Remote Code Execution
Posted Jun 3, 2021
Authored by Johnny Yu | Site github.com

Proof of concept exploit for a remote code execution vulnerability in Microsoft's RDP service.

tags | exploit, remote, code execution, proof of concept
advisories | CVE-2019-0708
MD5 | ba1bc2933bf6b851671dc70d3284245c
Exim base64d Buffer Overflow
Posted Jun 3, 2021
Authored by Johnny Yu | Site github.com

Exim versions prior to 4.90.1 remote buffer overflow proof of concept exploit.

tags | exploit, remote, overflow, proof of concept
advisories | CVE-2018-6789
MD5 | 6468b402efc15ca33e2db61638ca5cb9
Cisco SD-WAN vManage 19.2.2 Remote Root
Posted Jun 3, 2021
Authored by Johnny Yu | Site github.com

Cisco SD-WAN vManage version 19.2.2 remote root shell proof of concept exploit that leverages multiple vulnerabilities.

tags | exploit, remote, shell, root, vulnerability, proof of concept
systems | cisco
advisories | CVE-2020-3387, CVE-2020-3437
MD5 | a4bd588c350b9a327fc445d03fadab85
Gitlab 13.9.3 Remote Code Execution
Posted Jun 3, 2021
Authored by enox

Gitlab version 13.9.3 authenticated remote code execution exploit.

tags | exploit, remote, code execution
MD5 | ee6b4d90b2b1a37c5c9f993bb30af022
CHIYU IoT Telnet Authentication Bypass
Posted Jun 3, 2021
Authored by sirpedrotavares

Several IoT devices from the CHIYU Technology firm are vulnerable to a flaw that permits bypassing the telnet authentication process due to an overflow during the negotiation of the telnet protocol. Telnet authentication is bypassed by supplying a specially malformed request, and an attacker may force the remote telnet server to believe that the user has already authenticated. Several models are vulnerable, including BF-430, BF-431, BF-450M, and SEMAC with the most recent firmware versions.

tags | exploit, remote, overflow, protocol, bypass
advisories | CVE-2021-31251
MD5 | 97cff8513b3034f2b17e7eae72c11d7a
PHP 8.1.0-dev User-Agentt Remote Code Execution
Posted Jun 3, 2021
Authored by flast101

PHP version 8.1.0-dev remote code execution exploit that leverages a backdoor under the User-Agentt header.

tags | exploit, remote, php, code execution
MD5 | 4a66165091ec5e614d9f7b2d045ffcb8
Red Hat Security Advisory 2021-2205-01
Posted Jun 3, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-2205-01 - Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic. Issues addressed include a buffer overflow vulnerability.

tags | advisory, remote, overflow, protocol
systems | linux, redhat
advisories | CVE-2015-8011
MD5 | 4dcc716575ff25c54bbe4f4b220cc650
Ubuntu Security Notice USN-4976-1
Posted Jun 3, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4976-1 - Petr Mensik discovered that Dnsmasq incorrectly randomized source ports in certain configurations. A remote attacker could possibly use this issue to facilitate DNS cache poisoning attacks.

tags | advisory, remote
systems | linux, ubuntu
advisories | CVE-2021-3448
MD5 | e42d28318f14e3df6f8ca0e9566cf88f
Ubuntu Security Notice USN-4975-1
Posted Jun 3, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4975-1 - It was discovered that the Django URLValidator function incorrectly handled newlines and tabs. A remote attacker could possibly use this issue to perform a header injection attack. This issue only affected Ubuntu 20.04 LTS, Ubuntu 20.10, and Ubuntu 21.04. Rasmus Lerchedahl Petersen and Rasmus Wriedt Larsen discovered that Django incorrectly handled path sanitation in admindocs. A remote attacker could possibly use this issue to determine the existence of arbitrary files and in certain configurations obtain their contents. Various other issues were also addressed.

tags | advisory, remote, arbitrary
systems | linux, ubuntu
advisories | CVE-2021-32052, CVE-2021-33203, CVE-2021-33571
MD5 | 8ff3e55f0ad94b7ed7a4b571a6382af7
Local Service Search Engine Management System 1.0 SQL Injection
Posted Jun 2, 2021
Authored by nu11secur1ty

Local Service Search Engine Management System version 1.0 remote SQL injection exploit that leverages the original discovery by Aditya Wakhlu in December of 2020.

tags | exploit, remote, local, sql injection
advisories | CVE-2021-3278
MD5 | 76768d3ec18eaeb66f7b8b892054d4a3
Apache Airflow 1.10.10 Remote Code Execution
Posted Jun 2, 2021
Authored by Pepe Berba

Apache Airflow versions 1.10.10 and below suffer from a remote code execution vulnerability.

tags | exploit, remote, code execution
advisories | CVE-2020-11978, CVE-2020-13927
MD5 | 239a2ba62a400089b2fa529aa54e7b85
ProjeQtOr Project Management 9.1.4 Shell Upload
Posted Jun 1, 2021
Authored by Temel Demir

ProjeQtOr Project Management version 9.1.4 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | c339c240029d0206837f21f8c4bf2f70
Ubuntu Security Notice USN-4971-1
Posted Jun 1, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4971-1 - It was discovered that libwebp incorrectly handled certain malformed images. If a user or automated system were tricked into opening a specially crafted image file, a remote attacker could use this issue to cause libwebp to crash, resulting in a denial of service, or possibly execute arbitrary code.

tags | advisory, remote, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2018-25009, CVE-2018-25013, CVE-2020-36330
MD5 | 5bf683a898c535b77a9103e8e89306ab
Page 2 of 1,154
Back12345Next

File Archive:

June 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jun 1st
    35 Files
  • 2
    Jun 2nd
    14 Files
  • 3
    Jun 3rd
    40 Files
  • 4
    Jun 4th
    22 Files
  • 5
    Jun 5th
    1 Files
  • 6
    Jun 6th
    1 Files
  • 7
    Jun 7th
    19 Files
  • 8
    Jun 8th
    14 Files
  • 9
    Jun 9th
    39 Files
  • 10
    Jun 10th
    20 Files
  • 11
    Jun 11th
    22 Files
  • 12
    Jun 12th
    2 Files
  • 13
    Jun 13th
    1 Files
  • 14
    Jun 14th
    32 Files
  • 15
    Jun 15th
    34 Files
  • 16
    Jun 16th
    9 Files
  • 17
    Jun 17th
    33 Files
  • 18
    Jun 18th
    0 Files
  • 19
    Jun 19th
    0 Files
  • 20
    Jun 20th
    0 Files
  • 21
    Jun 21st
    0 Files
  • 22
    Jun 22nd
    0 Files
  • 23
    Jun 23rd
    0 Files
  • 24
    Jun 24th
    0 Files
  • 25
    Jun 25th
    0 Files
  • 26
    Jun 26th
    0 Files
  • 27
    Jun 27th
    0 Files
  • 28
    Jun 28th
    0 Files
  • 29
    Jun 29th
    0 Files
  • 30
    Jun 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close