exploit the possibilities
Showing 51 - 75 of 28,540 RSS Feed

Remote Files

Online Internship Management System 1.0 SQL Injection
Posted Feb 16, 2021
Authored by Christian Vierschilling

Online Internship Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
MD5 | 851adeeccdb8b3f68ad83bd9dfa34813
Ubuntu Security Notice USN-4735-1
Posted Feb 15, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4735-1 - Heikki Linnakangas discovered that PostgreSQL incorrectly leaked values of denied columns when handling certain errors. A remote attacker could possibly use this issue to obtain sensitive information.

tags | advisory, remote
systems | linux, ubuntu
advisories | CVE-2021-3393
MD5 | 227bd67b06137ca52a640ada1774b34d
TestLink 1.9.20 Shell Upload
Posted Feb 14, 2021
Authored by snovvcrash

TestLink version 1.9.20 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell, file upload
advisories | CVE-2020-8639
MD5 | ae7a82dc9cd277f7eda03cb9961266ca
Red Hat Security Advisory 2021-0497-01
Posted Feb 11, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-0497-01 - Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic. Issues addressed include denial of service and memory leak vulnerabilities.

tags | advisory, remote, denial of service, vulnerability, protocol, memory leak
systems | linux, redhat
advisories | CVE-2020-27827, CVE-2020-35498
MD5 | b95fbb1685e26088f6a59efe341ca99a
Backdoor.Win32.BackAttack.18 Missing Authentication
Posted Feb 11, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.BackAttack.18 malware suffers from a missing authentication vulnerability that can allow for remote screenshots, system restart, and more.

tags | exploit, remote
systems | windows
MD5 | 6d3c0dc494872c04ac02bb919738596e
Online Marriage Registration System 1.0 Remote Code Execution
Posted Feb 11, 2021
Authored by Ricardo Jose Ruiz Fernandez

Online Marriage Registration System (OMRS) version 1.0 remote code execution exploit. Original discovery of remote code execution in this version was discovered by Selim Enes Karaduman in June of 2020.

tags | exploit, remote, code execution
MD5 | 91b21c761d4feb73fc2855ee5456b2a8
Ubuntu Security Notice USN-4733-1
Posted Feb 11, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4733-1 - Yiğit Can Yılmaz discovered that GNOME Autoar could extract files outside of the intended directory. If a user were tricked into extracting a specially crafted archive, a remote attacker could create files in arbitrary locations, possibly leading to code execution.

tags | advisory, remote, arbitrary, code execution
systems | linux, ubuntu
advisories | CVE-2020-36241
MD5 | 3c18fc22fd38af8603be0f826c12a53c
Ubuntu Security Notice USN-4730-1
Posted Feb 11, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4730-1 - It was discovered that PostSRSd mishandled certain input. A remote attacker could use this vulnerability to cause a denial of service via a long timestamp tag in an SRS address.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2020-35573
MD5 | bdc88a3e5e210b788edf6e34417e8069
Openlitespeed WebServer 1.7.8 Command Injection
Posted Feb 11, 2021
Authored by Metin Yunus Kandemir

Openlitespeed WebServer version 1.7.8 remote command injection exploit. Original discovery of command injection in this version is attributed to cm0s from SunCSR in January of 2021.

tags | exploit, remote
MD5 | 544ac8117ecdf27be5df7ddb1c7cbc9c
Ubuntu Security Notice USN-4729-1
Posted Feb 11, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4729-1 - Joakim Hindersson discovered that Open vSwitch incorrectly parsed certain network packets. A remote attacker could use this issue to cause a denial of service, or possibly alter packet classification.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2020-35498
MD5 | a3a094b1e953292162369944791069b3
Micro Focus Operations Bridge Manager Remote Code Execution
Posted Feb 10, 2021
Authored by Pedro Ribeiro | Site metasploit.com

This Metasploit module exploits an authenticated Java deserialization that affects a truckload of Micro Focus products: Operations Bridge Manager, Application Performance Management, Data Center Automation, Universal CMDB, Hybrid Cloud Management and Service Management Automation. However, this module was only tested on Operations Bridge Manager. Exploiting this vulnerability will result in remote code execution as the root user on Linux or the SYSTEM user on Windows. Authentication is required as the module user needs to login to the application and obtain the authenticated LWSSO_COOKIE_KEY, which should be fed to the module. Any authenticated user can exploit this vulnerability, even the lowest privileged ones.

tags | exploit, java, remote, root, code execution
systems | linux, windows
advisories | CVE-2020-11853
MD5 | f6552551b0f335ef518698e89a9caa30
Online Car Rental 1.0 Shell Upload
Posted Feb 10, 2021
Authored by Richard Jones

Online Car Rental version 1.0 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
MD5 | 16e7dbecfa2fc7c91e9c10a0ab80b747
Node.JS Remote Code Execution
Posted Feb 10, 2021
Authored by UndeadLarva

Node.JS node-serialize remote code execution exploit.

tags | exploit, remote, code execution
advisories | CVE-2017-5941
MD5 | 6de3e38610681551f2c44541f8bdf9c3
Doctor Appointment System 1.0 SQL Injection
Posted Feb 9, 2021
Authored by Nakul Ratti, Soham Bakore

Doctor Appointment System version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2021-27124
MD5 | 33f63dc8551db9643bd780e1c4dc03a8
SmartFoxServer 2X 2.17.0 Remote Code Execution
Posted Feb 8, 2021
Authored by LiquidWorm | Site zeroscience.mk

SmartFoxServer 2X version 2.17.0 suffers from a God Mode Console remote code execution vulnerability.

tags | exploit, remote, code execution
advisories | CVE-2021-26551
MD5 | 2db834152ee7e493d99bb63e98a6d779
Unibox 2.4 CSRF / Remote Code Execution
Posted Feb 8, 2021
Authored by Kaustubh G. Padwad

Unibox version 2.4 suffers from remote code execution and cross site request forgery vulnerabilities.

tags | exploit, remote, vulnerability, code execution, csrf
MD5 | 0d9c1908b02b93829d56268f4e5a5330
WordPress Supsystic Contact Form 1.7.5 XSS / SQL Injection
Posted Feb 8, 2021
Authored by Erik David Martin

WordPress Supsystic Contact Form plugin version 1.7.5 suffers from remote SQL injection and persistent cross site scripting vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | 7e3c423817bad34b034f050f97987684
Ubuntu Security Notice USN-4724-1
Posted Feb 8, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4724-1 - It was discovered that OpenLDAP incorrectly handled Certificate Exact Assertion processing. A remote attacker could possibly use this issue to cause OpenLDAP to crash, resulting in a denial of service. It was discovered that OpenLDAP incorrectly handled saslAuthzTo processing. A remote attacker could use this issue to cause OpenLDAP to crash, resulting in a denial of service, or possibly execute arbitrary code. Various other issues were also addressed.

tags | advisory, remote, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2020-36221, CVE-2020-36223, CVE-2020-36225, CVE-2020-36227, CVE-2020-36228, CVE-2020-36229
MD5 | 852e5d3d483b0c482e0d2cf0e83c7463
Ubuntu Security Notice USN-4723-1
Posted Feb 8, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4723-1 - It was discovered that PEAR incorrectly handled symbolic links in archives. A remote attacker could possibly use this issue to execute arbitrary code.

tags | advisory, remote, arbitrary
systems | linux, ubuntu
advisories | CVE-2020-36193
MD5 | e5a5caaef47996d8ce8f41c96561ee25
WordPress Supsystic Data Tables Generator 1.9.96 XSS / SQL Injection
Posted Feb 8, 2021
Authored by Erik David Martin

WordPress Supsystic Data Tables Generator plugin version 1.9.96 suffers from remote SQL injection and cross site scripting vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | 0de1ad5899f3e0cf987792a9b171f704
WordPress Supsystic Membership 1.4.7 SQL Injection
Posted Feb 8, 2021
Authored by Erik David Martin

WordPress Supsystic Membership plugin version 1.4.7 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 0baf563c58aab042851f322981d679f2
WordPress Supsystic Newsletter 1.5.5 SQL Injection
Posted Feb 8, 2021
Authored by Erik David Martin

WordPress Supsystic Newsletter plugin version 1.5.5 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | c5b66d7eeacb35f3fc7d7670da3646d2
WordPress Supsystic Pricing Table 1.8.7 SQL Injection / Cross Site Scripting
Posted Feb 8, 2021
Authored by Erik David Martin

WordPress Supsystic Pricing Table plugin version 1.8.7 suffers from remote SQL injection and cross site scripting vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | 12f88285cc20a264c2c9a7bcc2fe22ca
WordPress Welcart e-Commerce 2.0.0 SQL Injection
Posted Feb 8, 2021
Authored by Erik David Martin

WordPress Welcart e-Commerce plugin version 2.0.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | d798a021100ef98fec6e0f5cb5040b38
WordPress Supsystic Ultimate Maps 1.1.12 SQL Injection
Posted Feb 7, 2021
Authored by Erik David Martin

WordPress Supsystic Ultimate Maps plugin version 1.1.12 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 8f77ba2063df29a69f7b8c061cbdc31b
Page 3 of 1,142
Back12345Next

File Archive:

March 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    19 Files
  • 2
    Mar 2nd
    15 Files
  • 3
    Mar 3rd
    0 Files
  • 4
    Mar 4th
    0 Files
  • 5
    Mar 5th
    0 Files
  • 6
    Mar 6th
    0 Files
  • 7
    Mar 7th
    0 Files
  • 8
    Mar 8th
    0 Files
  • 9
    Mar 9th
    0 Files
  • 10
    Mar 10th
    0 Files
  • 11
    Mar 11th
    0 Files
  • 12
    Mar 12th
    0 Files
  • 13
    Mar 13th
    0 Files
  • 14
    Mar 14th
    0 Files
  • 15
    Mar 15th
    0 Files
  • 16
    Mar 16th
    0 Files
  • 17
    Mar 17th
    0 Files
  • 18
    Mar 18th
    0 Files
  • 19
    Mar 19th
    0 Files
  • 20
    Mar 20th
    0 Files
  • 21
    Mar 21st
    0 Files
  • 22
    Mar 22nd
    0 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    0 Files
  • 26
    Mar 26th
    0 Files
  • 27
    Mar 27th
    0 Files
  • 28
    Mar 28th
    0 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close