what you don't know can hurt you
Showing 1 - 25 of 7,930 RSS Feed

Web Files

Web Ofisi E-Ticaret 3 SQL Injection
Posted Jul 19, 2019
Authored by Ahmet Umit Bayram

Web Ofisi E-Ticaret version 3 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, web, sql injection
MD5 | 7437ac5aa2847a7b983ed6607274391b
Web Ofisi Emlak 3 SQL Injection
Posted Jul 19, 2019
Authored by Ahmet Umit Bayram

Web Ofisi Emlak version 3 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, web, sql injection
MD5 | bbaf456b027e33df396413601723412b
Web Ofisi Emlak 2 SQL Injection
Posted Jul 19, 2019
Authored by Ahmet Umit Bayram

Web Ofisi Emlak version 2 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, web, sql injection
MD5 | acb2c38c14f06b7981c22fc021efba3d
Web Ofisi Platinum E-Ticaret 5 SQL Injection
Posted Jul 19, 2019
Authored by Ahmet Umit Bayram

Web Ofisi Platinum E-Ticaret version 5 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, web, sql injection
MD5 | e955a8dea20f701a89460c42b02c090e
Web Ofisi Firma 13 SQL Injection
Posted Jul 19, 2019
Authored by Ahmet Umit Bayram

Web Ofisi Firma version 13 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, web, sql injection
MD5 | 2f9e04f372779e233112abf19aebb546
Web Ofisi Rent A Car 3 SQL Injection
Posted Jul 19, 2019
Authored by Ahmet Umit Bayram

Web Ofisi Rent a Car version 3 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, web, sql injection
MD5 | a5d470c60fe210d7fc74f1549a7e6e81
Web Ofisi Firma Rehberi 1 SQL Injection
Posted Jul 19, 2019
Authored by Ahmet Umit Bayram

Web Ofisi Firma Rehberi version 1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, web, sql injection
MD5 | f92543b358ec74c2815f6389befe02b0
Red Hat Security Advisory 2019-1790-01
Posted Jul 16, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-1790-01 - Perl is a high-level programming language that is commonly used for system administration utilities and web programming. Issues addressed include a buffer overflow vulnerability.

tags | advisory, web, overflow, perl
systems | linux, redhat
advisories | CVE-2018-18311
MD5 | a298004fd012ab317d6dcdc6bd10d9ea
Ubuntu Security Notice USN-4059-1
Posted Jul 16, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4059-1 - It was discovered that Squid incorrectly handled certain SNMP packets. A remote attacker could possibly use this issue to cause memory consumption, leading to a denial of service. This issue only affected Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. It was discovered that Squid incorrectly handled the cachemgr.cgi web module. A remote attacker could possibly use this issue to conduct cross-site scripting attacks. Various other issues were also addressed.

tags | advisory, remote, web, denial of service, cgi, xss
systems | linux, ubuntu
advisories | CVE-2018-19132, CVE-2019-13345
MD5 | bf7b4c06d599e5f9a96a8cba60efc48b
CentOS Control Web Panel 0.9.8.838 User Enumeration
Posted Jul 16, 2019
Authored by Pongtorn Angsuchotmetee, Nissana Sirijirakal, Narin Boonwasanarak

CentOS Control Web Panel version 0.9.8.838 suffers from a user enumeration vulnerability.

tags | exploit, web
systems | linux, centos
advisories | CVE-2019-13383
MD5 | c0097370579f6ba471afee6e2a345e0b
CentOS Control Web Panel 0.9.8.836 Authentication Bypass
Posted Jul 16, 2019
Authored by Pongtorn Angsuchotmetee

CentOS Control Web Panel version 0.9.8.836 suffers from an authentication bypass vulnerability.

tags | exploit, web, bypass
systems | linux, centos
advisories | CVE-2019-13360, CVE-2019-13605
MD5 | 010e4c768075759ac870b22afd37ce05
CentOS Control Web Panel 0.9.8.836 Privilege Escalation
Posted Jul 16, 2019
Authored by Pongtorn Angsuchotmetee, Nissana Sirijirakal, Narin Boonwasanarak

CentOS Control Web Panel version 0.9.8.836 suffers from a privilege escalation vulnerability.

tags | exploit, web
systems | linux, centos
advisories | CVE-2019-13359
MD5 | a9210bf1e43adfc4a34316bfb77c32ed
PHP Laravel Framework Token Unserialize Remote Command Execution
Posted Jul 15, 2019
Authored by aushack, Stale Pettersen | Site metasploit.com

This Metasploit module exploits a vulnerability in the PHP Laravel Framework for versions 5.5.40, 5.6.x up to 5.6.29. Remote command execution is possible via a correctly formatted HTTP X-XSRF-TOKEN header, due to an insecure unserialize call of the decrypt method in Illuminate/Encryption/Encrypter.php. Authentication is not required, however exploitation requires knowledge of the Laravel APP_KEY. Similar vulnerabilities appear to exist within Laravel cookie tokens based on the code fix. In some cases the APP_KEY is leaked which allows for discovery and exploitation.

tags | exploit, remote, web, php, vulnerability
advisories | CVE-2017-16894, CVE-2018-15133
MD5 | 7094c48d642dbb2c66067663c6ef39d9
Microsoft Windows HTTP To SMB NTLM Reflection Privilege Escalation
Posted Jul 15, 2019
Authored by Google Security Research, Glazvunov

Microsoft Windows suffers from an HTTP to SMB NTLM reflection that leads to a privilege escalation.

tags | exploit, web
systems | windows
advisories | CVE-2019-1019
MD5 | 62e80bf3709f00ac9657fb8dd16d9822
Xymon useradm Command Execution
Posted Jul 12, 2019
Authored by Brendan Coles, Markus Krell | Site metasploit.com

This Metasploit module exploits a command injection vulnerability in Xymon versions before 4.3.25 which allows authenticated users to execute arbitrary operating system commands as the web server user. When adding a new user to the system via the web interface with useradm.sh, the user's username and password are passed to htpasswd in a call to system() without validation. This module has been tested successfully on Xymon version 4.3.10 on Debian 6.

tags | exploit, web, arbitrary
systems | linux, debian
advisories | CVE-2016-2056
MD5 | 5d1fdb4c7a1abc1fbc3c13a84a4a2eef
Debian Security Advisory 4479-1
Posted Jul 12, 2019
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4479-1 - Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code, cross-site scripting, spoofing, information disclosure, denial of service or cross-site request forgery.

tags | advisory, web, denial of service, arbitrary, spoof, xss, info disclosure, csrf
systems | linux, debian
advisories | CVE-2019-11709, CVE-2019-11711, CVE-2019-11712, CVE-2019-11713, CVE-2019-11715, CVE-2019-11717, CVE-2019-11719, CVE-2019-11729, CVE-2019-11730, CVE-2019-9811
MD5 | 1e90e6a1c90fc8275f2fadb11f5d1fc8
Red Hat Security Advisory 2019-1763-01
Posted Jul 12, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-1763-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 60.8.0 ESR. Issues addressed include cross site scripting and use-after-free vulnerabilities.

tags | advisory, web, vulnerability, xss
systems | linux, redhat
advisories | CVE-2019-11709, CVE-2019-11711, CVE-2019-11712, CVE-2019-11713, CVE-2019-11715, CVE-2019-11717, CVE-2019-11730, CVE-2019-9811
MD5 | 4d0b8355d6f907b18f24fcab1f430520
Red Hat Security Advisory 2019-1764-01
Posted Jul 11, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-1764-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 60.8.0 ESR. Issues addressed include cross site scripting and use-after-free vulnerabilities.

tags | advisory, web, vulnerability, xss
systems | linux, redhat
advisories | CVE-2019-11709, CVE-2019-11711, CVE-2019-11712, CVE-2019-11713, CVE-2019-11715, CVE-2019-11717, CVE-2019-11730, CVE-2019-9811
MD5 | e62ece17b5f9558a1cb3afc322f148d3
Red Hat Security Advisory 2019-1765-01
Posted Jul 11, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-1765-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 60.8.0 ESR. Issues addressed include cross site scripting and use-after-free vulnerabilities.

tags | advisory, web, vulnerability, xss
systems | linux, redhat
advisories | CVE-2019-11709, CVE-2019-11711, CVE-2019-11712, CVE-2019-11713, CVE-2019-11715, CVE-2019-11717, CVE-2019-11730, CVE-2019-9811
MD5 | 60068e89de7c74f2c2339f38525e4fba
PowerPanel Business Edition 3.4.0 Cross Site Request Forgery
Posted Jul 10, 2019
Authored by Joey Lane

PowerPanel Business Edition version 3.4.0 is vulnerable to cross site request forgery vulnerability. This can be exploited by tricking an authenticated user into visiting a web page controlled by a malicious person.

tags | exploit, web, csrf
advisories | CVE-2019-13071
MD5 | a9ab16dd95ed0e4e8b09539a84c83b30
Bypassing Web Application Firewalls With HTTP Parameter Pollution
Posted Jul 10, 2019
Authored by Berk Sagiroglu

Whitepaper called Bypassing Web Application Firewalls with HTTP Parameter Pollution. Written in Turkish.

tags | paper, web
MD5 | 5e515a4b949177e71c30bead05663400
Red Hat Security Advisory 2019-1712-01
Posted Jul 9, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-1712-01 - Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the Apache HTTP Server, the Apache Tomcat Servlet container, Apache Tomcat Connector, JBoss HTTP Connector, Hibernate, and the Tomcat Native library. This release of Red Hat JBoss Web Server 3.1 Service Pack 7 serves as a replacement for Red Hat JBoss Web Server 3.1, and includes bug fixes, which are documented in the Release Notes document linked to in the References. Issues addressed include code execution and denial of service vulnerabilities.

tags | advisory, java, web, denial of service, vulnerability, code execution
systems | linux, redhat
advisories | CVE-2018-0739, CVE-2019-0232
MD5 | b873acd280d331eebb5b9a89a00a2f19
Red Hat Security Advisory 2019-1711-01
Posted Jul 9, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-1711-01 - Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the Apache HTTP Server, the Apache Tomcat Servlet container, Apache Tomcat Connector, JBoss HTTP Connector, Hibernate, and the Tomcat Native library. This release of Red Hat JBoss Web Server 3.1 Service Pack 7 serves as a replacement for Red Hat JBoss Web Server 3.1, and includes bug fixes, which are documented in the Release Notes document linked to in the References. Issues addressed include a denial of service vulnerability.

tags | advisory, java, web, denial of service
systems | linux, redhat
advisories | CVE-2018-0739
MD5 | 2a275448735516008619b561fd01c504
Debian Security Advisory 4476-1
Posted Jul 8, 2019
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4476-1 - Three security issues were found in Django, a Python web development framework, which could result in denial of service, incomplete sanitization of clickable links or missing redirects of HTTP requests to HTTPS.

tags | advisory, web, denial of service, python
systems | linux, debian
advisories | CVE-2019-12308, CVE-2019-12781, CVE-2019-6975
MD5 | 87af8c2663aa991c6a2708adceac437c
Red Hat Security Advisory 2019-1696-01
Posted Jul 8, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-1696-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 60.7.2 ESR. Issues addressed include type confusion and sandbox escape vulnerabilities.

tags | advisory, web, vulnerability
systems | linux, redhat
advisories | CVE-2019-11707, CVE-2019-11708
MD5 | cbdcf1b81bf4297a845eb11a184de06d
Page 1 of 318
Back12345Next

File Archive:

July 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    34 Files
  • 2
    Jul 2nd
    15 Files
  • 3
    Jul 3rd
    9 Files
  • 4
    Jul 4th
    8 Files
  • 5
    Jul 5th
    2 Files
  • 6
    Jul 6th
    3 Files
  • 7
    Jul 7th
    1 Files
  • 8
    Jul 8th
    15 Files
  • 9
    Jul 9th
    15 Files
  • 10
    Jul 10th
    20 Files
  • 11
    Jul 11th
    17 Files
  • 12
    Jul 12th
    16 Files
  • 13
    Jul 13th
    2 Files
  • 14
    Jul 14th
    1 Files
  • 15
    Jul 15th
    20 Files
  • 16
    Jul 16th
    27 Files
  • 17
    Jul 17th
    7 Files
  • 18
    Jul 18th
    5 Files
  • 19
    Jul 19th
    12 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close