SimpNews version 2.47.03 suffers from a cross site scripting vulnerability.
59ba1564c3700ddc5ee1ac6e4cfa867dafd41c49fd1d41f3f64c6be9bb5740cc278 bytes small write-to-file shellcode that writes the word pwned to a text file titled f.txt in the current working directory.
fb57669413ae8633c51d2bf538c0ed15eb323bac6e59fe689cabe6326fd2b66aipt_pkd is an iptables extension implementing port knock detection. This project provides 3 parts: the kernel module ipt_pkd, the iptables user space module libipt_pkd.so, and a user space client knock program. For the knock packet, it uses a UDP packet sent to a random port that contains a SHA-256 of a timestamp, small header, random bytes, and a shared key. ipt_pkd checks the time window of the packet and does the SHA-256 to verify the packet. The shared key is never sent.
bd0e64702d3c1c0eff1571b731e0817c5f09f7c29c3385b789ab86941664058dYappa versions 3.1.2 and below suffer from remote file inclusion and command execution vulnerabilities.
47b284eb41576b57551161486139c91662df1ca866c7888f6c06d1249a131cfd2RSTUDIO suffers from a remote SQL injection vulnerability.
3a7f5c6cf59ea347bbf9c07c1e544c6b8c50b4aef10e7d1e33843b0e25bfe2faSoftwex CMS suffers from a remote SQL injection vulnerability.
32f7f936592b640704095d2527a6261a6e7933920ffb26c32d976393bf48933dThe Joomla QuickFAQ component suffers from a remote blind SQL injection vulnerability.
6280ac5895183ed33ffbd1868c9cca6bec2c365067bc14fd65c527924e25693949 bytes small execve("/sbin/iptables", ["/sbin/iptables", "-F"], NULL) Linux/x86-64 shellcode.
646e2767608e80c0ca6a00c07d7d14e5cea292803ee4e690e3f41ab8fdb92c07Secunia Security Advisory - Red Hat has issued an update for libtiff. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
776b76af98bfd7568e4ab4e4915d470ea60d54d0476efab2ec5ea8d8bfbad666Secunia Security Advisory - A vulnerability has been discovered in b2evolutioin, which can be exploited by malicious people to conduct cross-site request forgery attacks.
247a247d90aee72f294da1491c7c989daf0472622feebd98948a6a126dca8871Secunia Security Advisory - Fedora has issued an update for w3m. This fixes a vulnerability, which can be exploited by malicious people to conduct spoofing attacks.
121aba9735acb5a28f94531333fe9068914f4893152d524433356279584804b9Secunia Security Advisory - Ram Sripracha has discovered a vulnerability in LISTSERV, which can be exploited by malicious people to conduct cross-site scripting attacks.
d732dc238f46dc4b89b3cf398e9f33ee15fd1859db595f43faecff2267f763c2Secunia Security Advisory - A vulnerability has been discovered in osCSS, which can be exploited by malicious people to conduct cross-site scripting attacks.
c1407f97cf0bb9dfa4c4fa3f2024c684804f77bf015074e6a26cd783baa337f5Secunia Security Advisory - SUSE has issued an update for MozillaFirefox and mozilla-xulrunner191. This fixes multiple vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, bypass certain security restrictions, and compromise a user's system.
11f307cab57b432806b1923b8bfc176479f52190d697cfc08d8073aef2840143Secunia Security Advisory - Fedora has issued an update for the kernel. This fixes a vulnerability and a security issue, which can be exploited by malicious, local users to bypass certain security restrictions, cause a DoS (Denial of Service), and potentially gain escalated privileges.
2adbb153b5c4b949c1be9bfeadc8d5c6b36d96a68e8a92ba2aa4d3020cf24381Secunia Security Advisory - Red Hat has issued an update for libtiff. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library.
0a1f976fbe6118dd6d168388cae6bcaeb4d7487f505713fcd37853cddbb06e96MP3 Cutter version 1.5 denial of service exploit.
f71d389403279da9abcf483ee6ed158718e2bcac487aa1bbf1a21504f0595073The Joomla Canteen component suffers from a local file inclusion vulnerability.
98715aede7fec4513170d92b850b2a172aba4a7a5ae496ac33a0d9fbdaa2941aThe Joomla IXXO Cart component suffers from a remote SQL injection vulnerability.
15af944429b70be71b6567c0ecb72417b42ba24f6c85da4291a222ff092ce2f1Sun Java Web Server version 7.0 update 7 remote stack overflow exploit that is capable of bypassing DEP. In order to do this it uses ROP to invoke SetProcessDEPPolicy(). This is the second version of this exploit.
5ad70f7b7f2e69ccea95b224be4c72b4098e1aff0d6b032f6327e5d85239389eb2evolution version 3.3.3 suffers from a cross site request forgery vulnerability.
f273237ef8757821d1df9ccf4da5e3f62e80ba665ce623d82a22afa8d442de4aSphider version 1.3.5 suffers from a remote file inclusion vulnerability.
9e058aabf534bde63fe3d586196996c884b27d59d797130347af5cc70ff0142fMinify4Joomla suffers from a cross site scripting vulnerability.
2101dfe4eeebb132a9cfb631c1bd0e1ebd465d6a965828b40cd1899c067414dfSecunia Security Advisory - A vulnerability has been reported in the Hierarchical Select module for Drupal, which can be exploited by malicious users to conduct script insertion attacks.
598c7d4ef85300c1bd19a3e5231b431dfb278235de436ff87c09512780815c88Secunia Security Advisory - Fedora has issued an update for python-mako. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks or script insertion attacks.
a89ae85b304ebe00f11ab1e366269d0e7483a9099b02d6baefd8fb2268e0fb7d
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed