Twenty Year Anniversary
Showing 101 - 125 of 26,338 RSS Feed

Remote Files

Facturation System 1.0 SQL Injection
Posted Nov 12, 2018
Authored by Ihsan Sencan

Facturation System version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | cc739da9b1dce4e69acec65524f7f8ed
Paroiciel 11.20 SQL Injection
Posted Nov 12, 2018
Authored by Ihsan Sencan

Paroiciel version 11.20 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 2cef56992e3bde78149d1a2a712ab38b
Data Center Audit 2.6.2 SQL Injection
Posted Nov 12, 2018
Authored by Ihsan Sencan

Data Center Audit version 2.6.2 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 50743004a9d872e2e1324206cc8fb52a
WordPress PeepSo 1.11.2 SQL Injection
Posted Nov 12, 2018
Authored by Socket_0x03

WordPress PeepSo plugin version 1.11.2 suffers from a remote time-based SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | f7801a9f20acb28193e406e3e8127b11
WordPress WP User Manager 2.0.8 SQL Injection
Posted Nov 12, 2018
Authored by Socket_0x03

WordPress WP User Manager plugin version 2.0.8 suffers from a remote time-based SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | b23aa52bd9caaf0ef1b7daec59bcbab1
Advanced Comment System 1.0 SQL Injection
Posted Nov 12, 2018
Authored by Rafael Pedrero

Advanced Comment System version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2018-18619
MD5 | 2e410b3407ce4a5c6db3c52fa0679770
Ubuntu Security Notice USN-3814-1
Posted Nov 12, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3814-1 - It was discovered libmspack incorrectly handled certain malformed CAB files. A remote attacker could use this issue to cause libmspack to crash, resulting in a denial of service.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2018-18584
MD5 | 08291f8fba97ca0ed220da4aeaf4801e
Gentoo Linux Security Advisory 201811-09
Posted Nov 12, 2018
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201811-9 - A vulnerability in Icecast might allow remote attackers to execute arbitrary code. Versions less than 2.4.4 are affected.

tags | advisory, remote, arbitrary
systems | linux, gentoo
advisories | CVE-2018-18820
MD5 | f6c49ac0f6a5d7138247ff4d411fc2bf
Gentoo Linux Security Advisory 201811-06
Posted Nov 10, 2018
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201811-6 - Multiple vulnerabilities have been found in libde265, the worst of which allows remote attackers to execute arbitrary code. Versions less than 1.0.3 are affected.

tags | advisory, remote, arbitrary, vulnerability
systems | linux, gentoo
MD5 | 42a1b84bbaf2f48f50665de5ebeadd39
Packet Fence 8.2.0
Posted Nov 9, 2018
Site packetfence.org

PacketFence is a network access control (NAC) system. It is actively maintained and has been deployed in numerous large-scale institutions. It can be used to effectively secure networks, from small to very large heterogeneous networks. PacketFence provides NAC-oriented features such as registration of new network devices, detection of abnormal network activities including from remote snort sensors, isolation of problematic devices, remediation through a captive portal, and registration-based and scheduled vulnerability scans.

Changes: Added support for clusters with servers located in multiple layer 3 networks. Permitted incoming Eduroam TLRS RADIUS requests. Added Mojo web authentication support. Added SMTP test function in Alerting. Various other additions and updates.
tags | tool, remote
systems | unix
MD5 | 0d77048b4d1f82bd42c7f8df9b218c52
D-LINK Central WifiManager (CWM 100) 1.03 r0098 Man-In-The-Middle
Posted Nov 9, 2018
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

The FTP Server component of the D-LINK Central WifiManager can be used as a man-in-the-middle machine allowing PORT Command bounce scan attacks. This vulnerability allows remote attackers to abuse your network and discreetly conduct network port scanning. Victims will then think these scans are originating from the D-LINK network running the afflicted FTP Server and not you. Version 1.03 r0098 is affected.

tags | exploit, remote
advisories | CVE-2018-15516
MD5 | 83571811be19f02f54e3bf44fda47807
Gentoo Linux Security Advisory 201811-03
Posted Nov 9, 2018
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201811-3 - A vulnerability in OpenSSL might allow remote attackers to cause a Denial of Service condition. Versions less than 1.0.2o-r6 are affected.

tags | advisory, remote, denial of service
systems | linux, gentoo
advisories | CVE-2018-0732
MD5 | fc3554e4ddb44a3d39e9d3767694abff
Gentoo Linux Security Advisory 201811-02
Posted Nov 9, 2018
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201811-2 - A buffer overflow in Python might allow remote attackers to cause a Denial of Service condition. Versions less than 2.7.15 are affected.

tags | advisory, remote, denial of service, overflow, python
systems | linux, gentoo
advisories | CVE-2018-1000030
MD5 | ec4ccf8226c5aad66199371cedbc492f
Gentoo Linux Security Advisory 201811-01
Posted Nov 9, 2018
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201811-1 - Multiple vulnerabilities have been found in X.Org X11 library, the worst of which could allow for remote code execution. Versions less than 1.6.6 are affected.

tags | advisory, remote, vulnerability, code execution
systems | linux, gentoo
advisories | CVE-2018-14598, CVE-2018-14599, CVE-2018-14600
MD5 | 55133b7ee4b717c649a3eb630beef5fb
Micro Focus Security Bulletin MFSBGN03829 1
Posted Nov 8, 2018
Authored by Micro Focus | Site microfocus.com

Micro Focus Security Bulletin MFSBGN03829 1 - A potential vulnerability has been identified in the Operations Bridge Manager capability of the Micro Focus Operations Bridge containerized suite. The vulnerability could be exploited to remote code execution and information disclosure. Revision 1 of this advisory.

tags | advisory, remote, code execution, info disclosure
advisories | CVE-2018-18590
MD5 | 129b8eb6c45a0b42e3969e743a7a99b4
Ubuntu Security Notice USN-3813-1
Posted Nov 8, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3813-1 - It was discovered that pyOpenSSL incorrectly handled memory when handling X509 objects. A remote attacker could use this issue to cause pyOpenSSL to crash, resulting in a denial of service, or possibly execute arbitrary code. It was discovered that pyOpenSSL incorrectly handled memory when performing operations on a PKCS #12 store. A remote attacker could possibly use this issue to cause pyOpenSSL to consume resources, resulting in a denial of service. Various other issues were also addressed.

tags | advisory, remote, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2018-1000807, CVE-2018-1000808
MD5 | 17ee1c5903a74363c12d44b59d9fe872
Red Hat Security Advisory 2018-3522-01
Posted Nov 8, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-3522-01 - The Simple Protocol for Independent Computing Environments is a remote display protocol for virtual environments. SPICE users can access a virtualized desktop or server from the local system or any system with network access to the server. SPICE is used in Red Hat Enterprise Linux for viewing virtualized guests running on the Kernel-based Virtual Machine hypervisor or on Red Hat Enterprise Virtualization Hypervisors. Issues addressed include a buffer overflow vulnerability.

tags | advisory, remote, overflow, kernel, local, protocol
systems | linux, redhat
advisories | CVE-2017-7506
MD5 | 24eb3ab5c01cfe4fdd69858d462761c2
PlayJoom 0.10.1 SQL Injection
Posted Nov 7, 2018
Authored by Ihsan Sencan

PlayJoom version 0.10.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 1fa01a64acfd8f6bd2ad5dd05780767a
OpenBiz Cubi Lite 3.0.8 SQL Injection
Posted Nov 7, 2018
Authored by Ozkan Mustafa Akkus

OpenBiz Cubi Lite version 3.0.8 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 17e3d4a019fd764657bd670de45a9b2a
OOP CMS BLOG 1.0 SQL Injection
Posted Nov 7, 2018
Authored by Ihsan Sencan

OOP CMS BLOG version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 524c65eb1ee41cc4fd1105d9c38839ce
Ubuntu Security Notice USN-3812-1
Posted Nov 7, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3812-1 - It was discovered that nginx incorrectly handled the HTTP/2 implementation. A remote attacker could possibly use this issue to cause excessive memory consumption, leading to a denial of service. This issue only affected Ubuntu 16.04 LTS, Ubuntu 18.04 LTS and Ubuntu 18.10. Gal Goldshtein discovered that nginx incorrectly handled the HTTP/2 implementation. A remote attacker could possibly use this issue to cause excessive CPU usage, leading to a denial of service. This issue only affected Ubuntu 16.04 LTS, Ubuntu 18.04 LTS and Ubuntu 18.10. Various other issues were also addressed.

tags | advisory, remote, web, denial of service
systems | linux, ubuntu
advisories | CVE-2018-16843, CVE-2018-16844, CVE-2018-16845
MD5 | ff9df4d865e372ebb24923ea96bc6bb2
Ubuntu Security Notice USN-3810-1
Posted Nov 6, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3810-1 - Ivan Gotovchits discovered that ppp incorrectly handled the EAP-TLS protocol. A remote attacker could use this issue to cause ppp to crash, resulting in a denial of service, or possibly bypass authentication.

tags | advisory, remote, denial of service, protocol
systems | linux, ubuntu
advisories | CVE-2018-11574
MD5 | bea0355887912e2020914ed77fd7dedf
Ubuntu Security Notice USN-3811-1
Posted Nov 6, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3811-1 - It was discovered that SpamAssassin incorrectly handled certain unclosed tags in emails. A remote attacker could possibly use this issue to cause a denial of service. It was discovered that SpamAssassin incorrectly handled the PDFInfo plugin. A remote attacker could possibly use this issue to execute arbitrary code. It was discovered that SpamAssassin incorrectly handled meta rule syntax. A local attacker could possibly use this issue to execute arbitrary code. Various other issues were also addressed.

tags | advisory, remote, denial of service, arbitrary, local
systems | linux, ubuntu
advisories | CVE-2017-15705, CVE-2018-11780, CVE-2018-11781
MD5 | 7fcbfde9589d7977e424e44fe80a9ea7
Grocery Crud 1.6.1 SQL Injection
Posted Nov 6, 2018
Authored by Loading Kura Kura

Grocery Crud version 1.6.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 3e2d4a995a8a5d0d16a266b8c6e76be1
TOR Virtual Network Tunneling Tool 0.3.4.9
Posted Nov 5, 2018
Authored by Roger Dingledine | Site tor.eff.org

Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with built-in privacy features. It provides the foundation for a range of applications that allow organizations and individuals to share information over public networks without compromising their privacy. Individuals can use it to keep remote Websites from tracking them and their family members. They can also use it to connect to resources such as news sites or instant messaging services that are blocked by their local Internet service providers (ISPs).

Changes: Tor 0.3.4.9 is the second stable release in its series. It backports numerous fixes, including a fix for a bandwidth management bug that was causing memory exhaustion on relays. Anyone running an earlier version of Tor 0.3.4.9 should upgrade.
tags | tool, remote, local, peer2peer
systems | unix
MD5 | 8a303c7c2491cd27b1646f6efdc4a5d0
Page 5 of 1,054
Back34567Next

File Archive:

December 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    11 Files
  • 2
    Dec 2nd
    1 Files
  • 3
    Dec 3rd
    18 Files
  • 4
    Dec 4th
    40 Files
  • 5
    Dec 5th
    16 Files
  • 6
    Dec 6th
    50 Files
  • 7
    Dec 7th
    12 Files
  • 8
    Dec 8th
    1 Files
  • 9
    Dec 9th
    1 Files
  • 10
    Dec 10th
    15 Files
  • 11
    Dec 11th
    30 Files
  • 12
    Dec 12th
    25 Files
  • 13
    Dec 13th
    15 Files
  • 14
    Dec 14th
    14 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close